Debian: DSA-2695-1 Critical: Chromium Browser Remote Issues
debian
May 29, 2013
Several vulnerabilities have been discovered in the chromium web browser
Summary
Several vulnerabilities have been discovered in the chromium web browser.
Multiple use-after-free, out-of-bounds read, memory safety, and
cross-site scripting issues were discovered and corrected.
CVE-2013-2837
Use-after-free vulnerability in the SVG implementation allows remote
attackers to cause a denial of service or possibly have unspecified
other impact via unknown vectors.
CVE-2013-2838
Google V8, as used in Chromium before 27.0.1453.93, allows
remote attackers to cause a denial of service (out-of-bounds read)
via unspecified vectors.
CVE-2013-2839
Chromium before 27.0.1453.93 does not properly perform a cast
of an unspecified variable during handling of clipboard data, which
allows remote attackers to cause a denial of service or possibly
have other impact via unknown vectors.
CVE-2013-2840
Use-after-free vulnerability in the media loader in Chromium
before 27.0.1453.93 allows remote attackers to cause a denial of
service or possibly have unsp...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: chromium-browser
CVE ID: CVE-2013-2837 CVE-2013-2838 CVE-2013-2839 CVE-2013-2840
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!