chromium -- multiple vulnerabilities

2014-03-03T00:00:00
ID B4023753-A4BA-11E3-BEC2-00262D5ED8EE
Type freebsd
Reporter FreeBSD
Modified 2014-03-03T00:00:00

Description

Google Chrome Releases reports:

19 vulnerabilities fixed in this release, including:

[344492] High CVE-2013-6663: Use-after-free in svg images. Credit to Atte Kettunen of OUSPG. [326854] High CVE-2013-6664: Use-after-free in speech recognition. Credit to Khalil Zhani. [337882] High CVE-2013-6665: Heap buffer overflow in software rendering. Credit to cloudfuzzer. [332023] Medium CVE-2013-6666: Chrome allows requests in flash header request. Credit to netfuzzerr. [348175] CVE-2013-6667: Various fixes from internal audits, fuzzing and other initiatives. [343964, 344186, 347909] CVE-2013-6668: Multiple vulnerabilities in V8 fixed in version 3.24.35.10.