Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 543
Alerts This Week
Warning Icon 1 543

Fedora 24 chromium-native_client Security Fix: Multiple Critical Issues

fedora
Calendar Grey November 10, 2016
Scroller Fedora Esm H88
Enhance Fedora 25 by installing chromium-native_client with essential patches addressing various vulnerabilities and bolstered performance.
Security fix for CVE-2016-5181, CVE-2016-5182, CVE-2016-5183, CVE-2016-5184, CVE-2016-5185, CVE-2016-5187, CVE-2016-5188, CVE-2016-5192, CVE-2016-5189, CVE-2016-5186, CVE-2016-5191...

Summary

Google's "pnacl" toolchain for native client support in Chromium. Depends on

their older "nacl" toolchain, packaged separately.

Update Information:

Security fix for CVE-2016-5181, CVE-2016-5182, CVE-2016-5183, CVE-2016-5184, CVE-2016-5185, CVE-2016-5187, CVE-2016-5188, CVE-2016-5192, CVE-2016-5189, CVE-2016-5186, CVE-2016-5191, CVE-2016-5190, CVE-2016-5193, CVE-2016-5194 Security fix for CVE-2016-5198 Update to new stable, 54.0.2840.90.

Change Log

References


[ 1 ] Bug #1384365 - CVE-2016-5194 chromium-browser: various fixes from internal audits https://bugzilla.redhat.com/show_bug.cgi?id=1384365 [ 2 ] Bug #1384364 - CVE-2016-5193 chromium-browser: scheme bypass https://bugzilla.redhat.com/show_bug.cgi?id=1384364 [ 3 ] Bug #1384362 - CVE-2016-5190 chromium-browser: use after free in internals https://bugzilla.redhat.com/show_bug.cgi?id=1384362 [ 4 ] Bug #1384361 - CVE-2016-5191 chromium-browser: universal xss in bookmarks https://bugzilla.redhat.com/show_bug.cgi?id=1384361 [ 5 ] Bug #1384360 - CVE-2016-5186 chromium-browser: out of bounds read in devtools https://bugzilla.redhat.com/show_bug.cgi?id=1384360 [ 6 ] Bug #1384358 - CVE-2016-5189 chromium-browser: url spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1384358 [ 7 ] Bug #1384357 - CVE-2016-5192 chromium-browser: cross-origin bypass in blink https://bugzilla.redhat.com/show_bug.cgi?id=1384357 [ 8 ] Bug #13...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade chromium-native_client' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium-native_client
Product: Fedora 24
Version: 54.0.2840.59
Release: 1.20161013git090f907.fc24
Summary: Google Native Client Toolchain

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.