FreeBSD Bugzilla – Attachment 169800 Details for
Bug 209142
www/chromium: multiple vulnerabilities
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
vuxml.diff
vuxml.diff (text/plain), 2.14 KB, created by
Carlos J. Puga Medina
on 2016-04-29 03:30:19 UTC
(
hide
)
Description:
vuxml.diff
Filename:
MIME Type:
Creator:
Carlos J. Puga Medina
Created:
2016-04-29 03:30:19 UTC
Size:
2.14 KB
patch
obsolete
>Index: security/vuxml/vuln.xml >=================================================================== >--- security/vuxml/vuln.xml (revision 414249) >+++ security/vuxml/vuln.xml (working copy) >@@ -58,6 +58,50 @@ > * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) > --> > <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> >+ <vuln vid="4927b95e-0db6-11e6-9394-e8e0b747a45a"> >+ <topic>chromium -- multiple vulnerabilities</topic> >+ <affects> >+ <package> >+ <name>chromium</name> >+ <name>chromium-npapi</name> >+ <name>chromium-pulse</name> >+ <range><lt>50.0.2661.94</lt></range> >+ </package> >+ </affects> >+ <description> >+ <body xmlns="http://www.w3.org/1999/xhtml"> >+ <p>Google Chrome Releases reports:</p> >+ <blockquote cite="http://googlechromereleases.blogspot.de/2016/04/stable-channel-update_28.html"> >+ <p>This update includes 9 security fixes, including:</p> >+ <ul> >+ <li>[574802] High CVE-2016-1660: Out-of-bounds write in Blink.</li> >+ <li>[601629] High CVE-2016-1661: Memory corruption in cross-process frames.</li> >+ <li>[603732] High CVE-2016-1662: Use-after-free in extensions.</li> >+ <li>[603987] High CVE-2016-1663: Use-after-free in Blink's V8 bindings.</li> >+ <li>[597322] Medium CVE-2016-1664: Address bar spoofing.</li> >+ <li>[606181] Medium CVE-2016-1665: Information leak in V8.</li> >+ <li>[607652] CVE-2016-1666: Various fixes from internal audits, >+ fuzzing and other initiatives.</li> >+ </ul> >+ </blockquote> >+ </body> >+ </description> >+ <references> >+ <cvename>CVE-2016-1660</cvename> >+ <cvename>CVE-2016-1661</cvename> >+ <cvename>CVE-2016-1662</cvename> >+ <cvename>CVE-2016-1663</cvename> >+ <cvename>CVE-2016-1664</cvename> >+ <cvename>CVE-2016-1665</cvename> >+ <cvename>CVE-2016-1666</cvename> >+ <url>http://googlechromereleases.blogspot.de/2016/04/stable-channel-update_28.html</url> >+ </references> >+ <dates> >+ <discovery>2016-04-28</discovery> >+ <entry>2016-04-29</entry> >+ </dates> >+ </vuln> >+ > <vuln vid="f2d4f879-0d7c-11e6-925f-6805ca0b3d42"> > <topic>logstash -- password disclosure vulnerability</topic> > <affects>
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=169800">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 209142
: 169800