Create an account

Subscribe to LWN

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

chromium: multiple vulnerabilities

Package(s):

chromium

CVE #(s):

CVE-2011-3078 CVE-2011-3079 CVE-2011-3080 CVE-2011-3081 CVE-2012-1521

Created:

May 14, 2012

Updated:

October 26, 2012

Description:

From the openSUSE advisory:

Chromium version 20.0.1128 fixes several security issues:

- CVE-2011-3078: Use after free in floats handling.
- CVE-2012-1521: Use after free in xml parser.
- CVE-2011-3079: IPC validation failure.
- CVE-2011-3080: Race condition in sandbox IPC
- CVE-2011-3081: Use after free in floats handling.

Alerts:

openSUSE	openSUSE-SU-2012:0613-1	2012-05-14
Gentoo	201205-01	2012-05-15
Ubuntu	USN-1524-1	2012-08-08
Ubuntu	USN-1617-1	2012-10-25
Mageia	MGASA-2012-0324	2012-11-06

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds