Create an account

Subscribe to LWN

Kernel prepatch 3.9-rc6

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

A kernel change breaks GlusterFS

PyCon: Evangelizing Python

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

chromium: multiple vulnerabilities

Package(s):

Chromium

CVE #(s):

CVE-2012-5130 CVE-2012-5131 CVE-2012-5132 CVE-2012-5133 CVE-2012-5134 CVE-2012-5135 CVE-2012-5136 CVE-2012-5137 CVE-2012-5138

Created:

December 12, 2012

Updated:

December 12, 2012

Description:

From the openSUSE advisory:

Chromium was updated to 25.0.1343

* Security Fixes (bnc#791234 and bnc#792154):

- CVE-2012-5131: Corrupt rendering in the Apple OSX driver for Intel GPUs
- CVE-2012-5133: Use-after-free in SVG filters.
- CVE-2012-5130: Out-of-bounds read in Skia
- CVE-2012-5132: Browser crash with chunked encoding
- CVE-2012-5134: Buffer underflow in libxml.
- CVE-2012-5135: Use-after-free with printing.
- CVE-2012-5136: Bad cast in input element handling.
- CVE-2012-5138: Incorrect file path handling
- CVE-2012-5137: Use-after-free in media source handling

Alerts:

openSUSE	openSUSE-SU-2012:1637-1	2012-12-12
Oracle	ELSA-2013-0581	2013-03-01
Mandriva	MDVSA-2013:056	2013-04-08

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds