Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 520
Alerts This Week
Warning Icon 1 520

Fedora 25: 2016-35049d9d97 Moderate: Chromium-Native_Client Security Fix

fedora
Calendar Grey November 19, 2016
Dist Fedora Esm H88
The latest Fedora 25 patch introduces crucial security enhancements aimed at resolving various CVE vulnerabilities linked to chromium-native_client, thereby strengthening protection measures.
Security fix for CVE-2016-5181, CVE-2016-5182, CVE-2016-5183, CVE-2016-5184, CVE-2016-5185, CVE-2016-5187, CVE-2016-5188, CVE-2016-5192, CVE-2016-5189, CVE-2016-5186, CVE-2016-5191...

Summary

Google's "pnacl" toolchain for native client support in Chromium. Depends on

their older "nacl" toolchain, packaged separately.

Update Information:

Security fix for CVE-2016-5181, CVE-2016-5182, CVE-2016-5183, CVE-2016-5184, CVE-2016-5185, CVE-2016-5187, CVE-2016-5188, CVE-2016-5192, CVE-2016-5189, CVE-2016-5186, CVE-2016-5191, CVE-2016-5190, CVE-2016-5193, CVE-2016-5194 Security fix for CVE-2016-5198 Update to new stable, 54.0.2840.90.

Change Log

References


[ 1 ] Bug #1384365 - CVE-2016-5194 chromium-browser: various fixes from internal audits https://bugzilla.redhat.com/show_bug.cgi?id=1384365 [ 2 ] Bug #1384364 - CVE-2016-5193 chromium-browser: scheme bypass https://bugzilla.redhat.com/show_bug.cgi?id=1384364 [ 3 ] Bug #1384362 - CVE-2016-5190 chromium-browser: use after free in internals https://bugzilla.redhat.com/show_bug.cgi?id=1384362 [ 4 ] Bug #1384361 - CVE-2016-5191 chromium-browser: universal xss in bookmarks https://bugzilla.redhat.com/show_bug.cgi?id=1384361 [ 5 ] Bug #1384360 - CVE-2016-5186 chromium-browser: out of bounds read in devtools https://bugzilla.redhat.com/show_bug.cgi?id=1384360 [ 6 ] Bug #1384358 - CVE-2016-5189 chromium-browser: url spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1384358 [ 7 ] Bug #1384357 - CVE-2016-5192 chromium-browser: cross-origin bypass in blink https://bugzilla.redhat.com/show_bug.cgi?id=1384357 [ 8 ] Bug #13...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade chromium-native_client' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
important
Lowest
Low
Medium
High
Critical

Name: chromium-native_client
Product: Fedora 25
Version: 54.0.2840.59
Release: 1.20161013git090f907.fc25
Summary: Google Native Client Toolchain

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.