chromium: multiple issues

2015-09-02T00:00:00
ID ASA-201509-1
Type archlinux
Reporter Arch Linux
Modified 2015-09-02T00:00:00

Description

  • CVE-2015-1291, CVE-2015-1293:

Cross-origin bypass in DOM.

  • CVE-2015-1292:

Cross-origin bypass in ServiceWorker.

  • CVE-2015-1294:

Use-after-free in Skia.

  • CVE-2015-1295:

Use-after-free in Printing.

  • CVE-2015-1296:

Character spoofing in omnibox.

  • CVE-2015-1297:

Permission scoping error in WebRequest.

  • CVE-2015-1298:

URL validation error in extensions.

  • CVE-2015-1299:

Use-after-free in Blink.

  • CVE-2015-1300:

Information leak in Blink.

  • CVE-2015-1301:

Various fixes from internal audits, fuzzing and other initiatives.