FreeBSD Bugzilla – Attachment 165927 Details for
Bug 206474
www/chromium: multiple vulnerabilities
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
vucml entry for latest chromium vulnerabilities
371bbea9-3836-4832-9e70-e8e928727f8c.xml (text/xml), 1.87 KB, created by
Christoph Moench-Tegeder
on 2016-01-21 20:37:12 UTC
(
hide
)
Description:
vucml entry for latest chromium vulnerabilities
Filename:
MIME Type:
Creator:
Christoph Moench-Tegeder
Created:
2016-01-21 20:37:12 UTC
Size:
1.87 KB
patch
obsolete
> <vuln vid="371bbea9-3836-4832-9e70-e8e928727f8c"> > <topic>chromium -- multiple vulnerabilities</topic> > <affects> > <package> > <name>chromium</name> > <range><lt>48.0.2564.82</lt></range> > </package> > </affects> > <description> > <body xmlns="http://www.w3.org/1999/xhtml"> > <p>Google Chrome Releases reports:</p> > <blockquote cite="http://googlechromereleases.blogspot.de/2016/01/stable-channel-update_20.html"> > <p>This update includes 37 security fixes, including:</p> > <ul> > <li>[497632] High CVE-2016-1612: Bad cast in V8.</li> > <li>[572871] High CVE-2016-1613: Use-after-free in PDFium.</li> > <li>[544691] Medium CVE-2016-1614: Information leak in Blink.</li> > <li>[468179] Medium CVE-2016-1615: Origin confusion in Omnibox.</li> > <li>[541415] Medium CVE-2016-1616: URL Spoofing.</li> > <li>[544765] Medium CVE-2016-1617: History sniffing with HSTS and CSP.</li> > <li>[552749] Medium CVE-2016-1618: Weak random number generator in Blink.</li> > <li>[557223] Medium CVE-2016-1619: Out-of-bounds read in PDFium.</li> > <li>[579625] CVE-2016-1620: Various fixes from internal audits, fuzzing and other initiatives.</li> > <li>Multiple vulnerabilities in V8 fixed at the tip of the 4.8 branch.</li> > </ul> > </blockquote> > </body> > </description> > <references> > <cvename>CVE-2016-1612</cvename> > <cvename>CVE-2016-1613</cvename> > <cvename>CVE-2016-1614</cvename> > <cvename>CVE-2016-1615</cvename> > <cvename>CVE-2016-1616</cvename> > <cvename>CVE-2016-1617</cvename> > <cvename>CVE-2016-1618</cvename> > <cvename>CVE-2016-1619</cvename> > <cvename>CVE-2016-1620</cvename> > <url>http://googlechromereleases.blogspot.de/2016/01/stable-channel-update_20.html</url> > </references> > <dates> > <discovery>2016-01-20</discovery> > <entry>2016-01-21</entry> > </dates> > </vuln> >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=165927">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 206474
: 165927