chromium -- multiple vulnerabilities

2012-04-30T00:00:00
ID 94C0AC4F-9388-11E1-B242-00262D5ED8EE
Type freebsd
Reporter FreeBSD
Modified 2012-04-30T00:00:00

Description

Google Chrome Releases reports:

[106413] High CVE-2011-3078: Use after free in floats handling. Credit to Google Chrome Security Team (Marty Barbella) and independent later discovery by miaubiz. [117627] Medium CVE-2011-3079: IPC validation failure. Credit to PinkiePie. [121726] Medium CVE-2011-3080: Race condition in sandbox IPC. Credit to Willem Pinckaers of Matasano. [121899] High CVE-2011-3081: Use after free in floats handling. Credit to miaubiz. [117110] High CVE-2012-1521: Use after free in xml parser. Credit to Google Chrome Security Team (SkyLined) and independent later discovery by wushi of team509 reported through iDefense VCP (V-874rcfpq7z).