openSUSE 12.2: 2012:1637-1 Important Chromium Update for 9 Issues
opensuse
December 12, 2012
An update that fixes 9 vulnerabilities is now available.
Description
Chromium was updated to 25.0.1343
* Security Fixes (bnc#791234 and bnc#792154):
- CVE-2012-5131: Corrupt rendering in the Apple OSX
driver for Intel GPUs
- CVE-2012-5133: Use-after-free in SVG filters.
- CVE-2012-5130: Out-of-bounds read in Skia
- CVE-2012-5132: Browser crash with chunked encoding
- CVE-2012-5134: Buffer underflow in libxml.
- CVE-2012-5135: Use-after-free with printing.
- CVE-2012-5136: Bad cast in input element handling.
- CVE-2012-5138: Incorrect file path handling
- CVE-2012-5137: Use-after-free in media source handling
- Correct build so that proprietary codecs can be used when
the chromium-ffmpeg package is installed
- Update to 25.0.1335
* {gtk} Fixed selection renders white text on
white background in apps. (Issue: 158422)
* Fixed translate infobar button to show selected
language. (Issue: 155350)
* Fixed broken Arabic language. (Issue: 158978)
* Fixed pre-rendering if the preference is...
Read the Full Advisory
Topics Covered
Patch
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 12.2:
zypper in -t patch openSUSE-2012-845
- openSUSE 12.1:
zypper in -t patch openSUSE-2012-845
To bring your system up-to-date, use "zypper patch".
Package List
- openSUSE 12.2 (i586 x86_64):
chromedriver-25.0.1343.0-1.23.1
chromedriver-debuginfo-25.0.1343.0-1.23.1
chromium-25.0.1343.0-1.23.1
chromium-debuginfo-25.0.1343.0-1.23.1
chromium-debugsource-25.0.1343.0-1.23.1
chromium-desktop-gnome-25.0.1343.0-1.23.1
chromium-desktop-kde-25.0.1343.0-1.23.1
chromium-ffmpegsumo-25.0.1343.0-1.23.1
chromium-ffmpegsumo-debuginfo-25.0.1343.0-1.23.1
chromium-suid-helper-25.0.1343.0-1.23.1
chromium-suid-helper-debuginfo-25.0.1343.0-1.23.1
- openSUSE 12.1 (i586 x86_64):
chromedriver-25.0.1343.0-1.43.1
chromedriver-debuginfo-25.0.1343.0-1.43.1
chromium-25.0.1343.0-1.43.1
chromium-debuginfo-25.0.1343.0-1.43.1
chromium-debugsource-25.0.1343.0-1.43.1
chromium-desktop-gnome-25.0.1343.0-1.43.1
chromium-desktop-kde-25.0.1343.0-1.43.1
chromium-ffmpegsumo-25.0.1343.0-1.43.1
chromium-ffmpegsumo-debuginfo-25.0.1343.0-1.43.1
chromium-suid-helper-25.0.1343.0-1.43.1
chromium-suid-helper-debuginfo-25.0.1343.0-1.43.1
References
https://www.suse.com/security/cve/CVE-2012-5130.html
https://www.suse.com/security/cve/CVE-2012-5131.html
https://www.suse.com/security/cve/CVE-2012-5132.html
https://www.suse.com/security/cve/CVE-2012-5133.html
https://www.suse.com/security/cve/CVE-2012-5134.html
https://www.suse.com/security/cve/CVE-2012-5135.html
https://www.suse.com/security/cve/CVE-2012-5136.html
https://www.suse.com/security/cve/CVE-2012-5137.html
https://www.suse.com/security/cve/CVE-2012-5138.html
--
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2012:1637-1
Rating: important
Affected Products:
openSUSE 12.2
openSUSE 12.1
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!