View previous topic :: View next topic |
Author |
Message |
GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Mon May 21, 2012 7:26 am Post subject: [ GLSA 201205-03 ] Chromium, V8: Multiple vulnerabilities |
|
|
Gentoo Linux Security Advisory
Title: Chromium, V8: Multiple vulnerabilities (GLSA 201205-03)
Severity: normal
Exploitable: remote
Date: May 21, 2012
Bug(s): #416119
ID: 201205-03
Synopsis
Multiple vulnerabilities have been reported in Chromium and V8,
some of which may allow execution of arbitrary code.
Background
Chromium is an open source web browser project. V8 is Google’s open
source JavaScript engine.
Affected Packages
Package: www-client/chromium
Vulnerable: < 19.0.1084.46
Unaffected: >= 19.0.1084.46
Architectures: All supported architectures
Package: dev-lang/v8
Vulnerable: < 3.9.24.21
Unaffected: >= 3.9.24.21
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Chromium and V8. Please
review the CVE identifiers and release notes referenced below for
details.
Impact
A context-dependent attacker could entice a user to open a specially
crafted web site or JavaScript program using Chromium or V8, possibly
resulting in the execution of arbitrary code with the privileges of the
process, or a Denial of Service condition.
Workaround
There is no known workaround at this time.
Resolution
All Chromium users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose
">=www-client/chromium-19.0.1084.46"
| All V8 users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=dev-lang/v8-3.9.24.21"
|
References
CVE-2011-3083
CVE-2011-3084
CVE-2011-3085
CVE-2011-3086
CVE-2011-3087
CVE-2011-3088
CVE-2011-3089
CVE-2011-3090
CVE-2011-3091
CVE-2011-3092
CVE-2011-3093
CVE-2011-3094
CVE-2011-3095
CVE-2011-3096
CVE-2011-3100
CVE-2011-3101
Release Notes 19.0.1084.46
|
|
Back to top |
|
|
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|