Debian Security Advisory DSA-2797-1: Chromium Remote Vulnerabilities
debian
November 17, 2013
Several vulnerabilities have been discovered in the chromium web browser
Summary
CVE-2013-2931
The chrome 31 development team found various issues from internal
fuzzing, audits, and other studies.
CVE-2013-6621
Khalil Zhani discovered a use-after-free issue in speech input
handling.
CVE-2013-6622
cloudfuzzer discovered a use-after-free issue in HTMLMediaElement.
CVE-2013-6623
miaubiz discovered an out-of-bounds read in the Blink/Webkit SVG
implementation.
CVE-2013-6624
Jon Butler discovered a use-after-free issue in id attribute strings.
CVE-2013-6625
cloudfuzzer discovered a use-after-free issue in the Blink/Webkit
DOM implementation.
CVE-2013-6626
Chamal de Silva discovered an address bar spoofing issue.
CVE-2013-6627
skylined discovered an out-of-bounds read in the HTTP stream parser.
CVE-2013-6628
Antoine Delignat-Lavaud and Karthikeyan Bhargavan of INRIA Paris
discovered that a different (unverified) certificate could be used
after successful TLS renegotiation with a valid certificate.
CVE-2013-6629
Michal Zalewski dis...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: chromium-browser
CVE ID: CVE-2013-2931 CVE-2013-6621 CVE-2013-6622 CVE-2013-6623
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!