Debian Security Advisory
DSA-2883-1 chromium-browser -- security update
- Date Reported:
- 23 Mar 2014
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2013-6653, CVE-2013-6654, CVE-2013-6655, CVE-2013-6656, CVE-2013-6657, CVE-2013-6658, CVE-2013-6659, CVE-2013-6660, CVE-2013-6661, CVE-2013-6663, CVE-2013-6664, CVE-2013-6665, CVE-2013-6666, CVE-2013-6667, CVE-2013-6668, CVE-2014-1700, CVE-2014-1701, CVE-2014-1702, CVE-2014-1703, CVE-2014-1704, CVE-2014-1705, CVE-2014-1713, CVE-2014-1715.
- More information:
Several vulnerabilities have been discovered in the chromium web browser.
Khalil Zhani discovered a use-after-free issue in chromium's web contents color chooser.
TheShow3511 discovered an issue in SVG handling.
cloudfuzzer discovered a use-after-free issue in dom event handling.
NeexEmil discovered an information leak in the XSS auditor.
NeexEmil discovered a way to bypass the Same Origin policy in the XSS auditor.
cloudfuzzer discovered multiple use-after-free issues surrounding the updateWidgetPositions function.
Antoine Delignat-Lavaud and Karthikeyan Bhargavan discovered that it was possible to trigger an unexpected certificate chain during TLS renegotiation.
bishopjeffreys discovered an information leak in the drag and drop implementation.
The Google Chrome team discovered and fixed multiple issues in version 33.0.1750.117.
Atte Kettunen discovered a use-after-free issue in SVG handling.
Khalil Zhani discovered a use-after-free issue in the speech recognition feature.
cloudfuzzer discovered a buffer overflow issue in the software renderer.
netfuzzer discovered a restriction bypass in the Pepper Flash plugin.
The Google Chrome team discovered and fixed multiple issues in version 33.0.1750.146.
Chamal de Silva discovered a use-after-free issue in speech synthesis.
aidanhs discovered a cross-site scripting issue in event handling.
Colin Payne discovered a use-after-free issue in the web database implementation.
VUPEN discovered a use-after-free issue in web sockets that could lead to a sandbox escape.
A use-after-free issue was discovered in the AttributeSetter function.
A directory traversal issue was found and fixed.
For the stable distribution (wheezy), these problems have been fixed in version 33.0.1750.152-1~deb7u1.
For the testing distribution (jessie), these problems will be fixed soon.
For the unstable distribution (sid), these problems have been fixed in version 33.0.1750.152-1.
We recommend that you upgrade your chromium-browser packages.