GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sat Jan 28, 2012 4:26 am Post subject: [ GLSA 201201-17 ] Chromium: Multiple vulnerabilities |
 |
|
Gentoo Linux Security Advisory
Title: Chromium: Multiple vulnerabilities (GLSA 201201-17)
Severity: normal
Exploitable: remote
Date: January 28, 2012
Bug(s): #400551
ID: 201201-17
Synopsis
Multiple vulnerabilities have been reported in Chromium, some of
which may allow execution of arbitrary code.
Background
Chromium is an open source web browser project.
Affected Packages
Package: www-client/chromium
Vulnerable: < 16.0.912.77
Unaffected: >= 16.0.912.77
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Chromium. Please review
the CVE identifiers and release notes referenced below for details.
Impact
A remote attacker could entice a user to open a specially crafted web
site using Chromium, possibly resulting in the execution of arbitrary
code with the privileges of the process, or a Denial of Service
condition.
Workaround
There is no known workaround at this time.
Resolution
All Chromium users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/chromium-16.0.912.77"
|
References
CVE-2011-3924
CVE-2011-3925
CVE-2011-3926
CVE-2011-3927
CVE-2011-3928
Release Notes 16.0.912.77
|
|
News & Announcements
