chromium -- multiple vulnerabilities

ID 358133B5-C2B9-11E2-A738-00262D5ED8EE
Type freebsd
Reporter FreeBSD
Modified 2013-05-21T00:00:00


Google Chrome Releases reports:

[235638] High CVE-2013-2837: Use-after-free in SVG. Credit to Slawomir Blazek. [235311] Medium CVE-2013-2838: Out-of-bounds read in v8. Credit to Christian Holler. [230176] High CVE-2013-2839: Bad cast in clipboard handling. Credit to Jon of MWR InfoSecurity. [230117] High CVE-2013-2840: Use-after-free in media loader. Credit to Nils of MWR InfoSecurity. [227350] High CVE-2013-2841: Use-after-free in Pepper resource handling. Credit to Chamal de Silva. [226696] High CVE-2013-2842: Use-after-free in widget handling. Credit to Cyril Cattiaux. [222000] High CVE-2013-2843: Use-after-free in speech handling. Credit to Khalil Zhani. [196393] High CVE-2013-2844: Use-after-free in style resolution. Credit to Sachin Shinde (@cons0ul). [188092] [179522] [222136] [188092] High CVE-2013-2845: Memory safety issues in Web Audio. Credit to Atte Kettunen of OUSPG. [177620] High CVE-2013-2846: Use-after-free in media loader. Credit to Chamal de Silva. [176692] High CVE-2013-2847: Use-after-free race condition with workers. Credit to Collin Payne. [176137] Medium CVE-2013-2848: Possible data extraction with XSS Auditor. Credit to Egor Homakov. [171392] Low CVE-2013-2849: Possible XSS with drag+drop or copy+paste. Credit to Mario Heiderich. [241595] High CVE-2013-2836: Various fixes from internal audits, fuzzing and other initiatives.