chromium-browser 13.0.782.215~r97094-0ubuntu0.10.10.1 source package in Ubuntu
Changelog
chromium-browser (13.0.782.215~r97094-0ubuntu0.10.10.1) maverick-security; urgency=low [ Fabien Tassin <email address hidden> ] * New upstream release from the Stable Channel (LP: #834922) This release fixes the following security issues: + Chromium issues: - [91517] High, CVE-2011-2828: Out-of-bounds write in v8. Credit to Google Chrome Security Team (SkyLined). + Webkit issues: - [82552] High, CVE-2011-2823: Use-after-free in line box handling. Credit to Google Chrome Security Team (SkyLined) and independent later discovery by miaubiz. - [88216] High, CVE-2011-2824: Use-after-free with counter nodes. Credit to miaubiz. - [88670] High, CVE-2011-2825: Use-after-free with custom fonts. Credit to wushi of team509 reported through ZDI (ZDI-CAN-1283), plus indepdendent later discovery by miaubiz. - [87453] High, CVE-2011-2826: Cross-origin violation with empty origins. Credit to Sergey Glazunov. - [90668] High, CVE-2011-2827: Use-after-free in text searching. Credit to miaubiz. - [32-bit only] [91598] High, CVE-2011-2829: Integer overflow in uniform arrays. Credit to Sergey Glazunov. + libxml2 issue: - [89402] High, CVE-2011-2821: Double free in libxml XPath handling. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences. chromium-browser (13.0.782.107~r94237-0ubuntu0.10.10.1) maverick-security; urgency=low [ Fabien Tassin <email address hidden> ] * New Major upstream release from the Stable Channel (LP: #819991) This release fixes the following security issues: + Chromium issues: - [75821] Medium, CVE-2011-2358: Always confirm an extension install via a browser dialog. Credit to Sergey Glazunov. - [79266] Low, CVE-2011-2360: Potential bypass of dangerous file prompt. Credit to kuzzcc. - [79426] Low, CVE-2011-2361: Improve designation of strings in the basic auth dialog. Credit to kuzzcc. - [81307] Medium, CVE-2011-2782: File permissions error with drag and drop. Credit to Evan Martin of the Chromium development community. - [83273] Medium, CVE-2011-2783: Always confirm a developer mode NPAPI extension install via a browser dialog. Credit to Sergey Glazunov. - [84402] Low, CVE-2011-2785: Sanitize the homepage URL in extensions. Credit to kuzzcc. - [84805] Medium, CVE-2011-2787: Browser crash due to GPU lock re-entrancy issue. Credit to kuzzcc. - [85808] Medium, CVE-2011-2789: Use after free in Pepper plug-in instantiation. Credit to Mario Gomes and kuzzcc. - [87815] Low, CVE-2011-2798: Prevent a couple of internal schemes from being web accessible. Credit to sirdarckcat of the Google Security Team. - [88827] Medium, CVE-2011-2803: Out-of-bounds read in Skia paths. Credit to Google Chrome Security Team (Inferno). + Webkit issues: - [78841] High, CVE-2011-2359: Stale pointer due to bad line box tracking in rendering. Credit to miaubiz and Martin Barbella. - [83841] Low, CVE-2011-2784: Local file path disclosure via GL program log. Credit to kuzzcc. - [84600] Low, CVE-2011-2786: Make sure the speech input bubble is always on-screen. Credit to Olli Pettay of Mozilla. - [85559] Low, CVE-2011-2788: Buffer overflow in inspector serialization. Credit to Mikołaj Małecki. - [86502] High, CVE-2011-2790: Use-after-free with floating styles. Credit to miaubiz. - [87148] High, CVE-2011-2792: Use-after-free with float removal. Credit to miaubiz. - [87227] High, CVE-2011-2793: Use-after-free in media selectors. Credit to miaubiz. - [87298] Medium, CVE-2011-2794: Out-of-bounds read in text iteration. Credit to miaubiz. - [87339] Medium, CVE-2011-2795: Cross-frame function leak. Credit to Shih Wei-Long. - [87548] High, CVE-2011-2796: Use-after-free in Skia. Credit to Google Chrome Security Team (Inferno) and Kostya Serebryany of the Chromium development community. - [87729] High, CVE-2011-2797: Use-after-free in resource caching. Credit to miaubiz. - [87925] High, CVE-2011-2799: Use-after-free in HTML range handling. Credit to miaubiz. - [88337] Medium, CVE-2011-2800: Leak of client-side redirect target. Credit to Juho Nurminen. - [88591] High, CVE-2011-2802: v8 crash with const lookups. Credit to Christian Holler. - [88846] High, CVE-2011-2801: Use-after-free in frame loader. Credit to miaubiz. - [88889] High, CVE-2011-2818: Use-after-free in display box rendering. Credit to Martin Barbella. - [89520] High, CVE-2011-2805: Cross-origin script injection. Credit to Sergey Glazunov. - [90222] High, CVE-2011-2819: Cross-origin violation in base URI handling. Credit to Sergey Glazunov. + ICU 4.6 issue: - [86900] High, CVE-2011-2791: Out-of-bounds write in ICU. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences. Packaging changes: * Run the gclient hooks when creating the source tarball, as we need files from the Native Client's integrated runtime (IRT) library. Install the NaCL IRT files in the main deb - update debian/rules - update debian/chromium-browser.install -- Micah Gersten <email address hidden> Fri, 26 Aug 2011 14:05:42 -0500
Upload details
- Uploaded by:
- Micah Gersten
- Uploaded to:
- Maverick
- Original maintainer:
- Fabien Tassin
- Architectures:
- i386 amd64 all
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
chromium-browser_13.0.782.215~r97094.orig.tar.gz | 177.5 MiB | 8d719632f6d67ad0bfc9781da46b74d2a2e024960f0398b0e14b11216ee6fc17 |
chromium-browser_13.0.782.215~r97094-0ubuntu0.10.10.1.diff.gz | 195.5 KiB | 770ebe5f19725733e29a147f78deca041fcd520efeb40dc780d1ba626555bd8b |
chromium-browser_13.0.782.215~r97094-0ubuntu0.10.10.1.dsc | 2.2 KiB | fcfd0b9c5248ddf71f9f18ce0bdf0bfce2c30a3cbfbd8595b1ba85a8ec5613f8 |
Available diffs
Binary packages built by this source
- chromium-browser: No summary available for chromium-browser in ubuntu maverick.
No description available for chromium-browser in ubuntu maverick.
- chromium-browser-dbg: No summary available for chromium-browser-dbg in ubuntu maverick.
No description available for chromium-
browser- dbg in ubuntu maverick.
- chromium-browser-inspector: No summary available for chromium-browser-inspector in ubuntu maverick.
No description available for chromium-
browser- inspector in ubuntu maverick.
- chromium-browser-l10n: No summary available for chromium-browser-l10n in ubuntu maverick.
No description available for chromium-
browser- l10n in ubuntu maverick.
- chromium-codecs-ffmpeg: No summary available for chromium-codecs-ffmpeg in ubuntu maverick.
No description available for chromium-
codecs- ffmpeg in ubuntu maverick.
- chromium-codecs-ffmpeg-dbg: No summary available for chromium-codecs-ffmpeg-dbg in ubuntu maverick.
No description available for chromium-
codecs- ffmpeg- dbg in ubuntu maverick.
- chromium-codecs-ffmpeg-extra: No summary available for chromium-codecs-ffmpeg-extra in ubuntu maverick.
No description available for chromium-
codecs- ffmpeg- extra in ubuntu maverick.
- chromium-codecs-ffmpeg-extra-dbg: No summary available for chromium-codecs-ffmpeg-extra-dbg in ubuntu maverick.
No description available for chromium-
codecs- ffmpeg- extra-dbg in ubuntu maverick.
- chromium-codecs-ffmpeg-nonfree: No summary available for chromium-codecs-ffmpeg-nonfree in ubuntu maverick.
No description available for chromium-
codecs- ffmpeg- nonfree in ubuntu maverick.
- chromium-codecs-ffmpeg-nonfree-dbg: No summary available for chromium-codecs-ffmpeg-nonfree-dbg in ubuntu maverick.
No description available for chromium-
codecs- ffmpeg- nonfree- dbg in ubuntu maverick.