chromium -- multiple vulnerabilities

2014-04-24T00:00:00
ID 7CF25A0C-D031-11E3-947B-00262D5ED8EE
Type freebsd
Reporter FreeBSD
Modified 2014-04-24T00:00:00

Description

Google Chrome Releases reports (belatedly):

9 security fixes in this release, including:

[354967] High CVE-2014-1730: Type confusion in V8. Credit to Anonymous. [349903] High CVE-2014-1731: Type confusion in DOM. Credit to John Butler. [359802] High CVE-2014-1736: Integer overflow in V8. Credit to SkyLined working with HP's Zero Day Initiative. [352851] Medium CVE-2014-1732: Use-after-free in Speech Recognition. Credit to Khalil Zhani. [351103] Medium CVE-2014-1733: Compiler bug in Seccomp-BPF. Credit to Jed Davis. [367314] CVE-2014-1734: Various fixes from internal audits, fuzzing and other initiatives. [359130, 359525, 360429] CVE-2014-1735: Multiple vulnerabilities in V8 fixed in version 3.24.35.33.