Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201201-17
HistoryJan 28, 2012 - 12:00 a.m.

Chromium: Multiple vulnerabilities

2012-01-2800:00:00
Gentoo Foundation
security.gentoo.org
18

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.3%

JSON

Background

Chromium is an open source web browser project.

Description

Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers and release notes referenced below for details.

Impact

A remote attacker could entice a user to open a specially crafted web site using Chromium, possibly resulting in the execution of arbitrary code with the privileges of the process, or a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All Chromium users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=www-client/chromium-16.0.912.77"
OSVersionArchitecturePackageVersionFilename
Gentooanyallwww-client/chromium< 16.0.912.77UNKNOWN

Related

openvas 20
threatpost 1
nessus 19
chrome 1
freebsd 2
debiancve 5
ubuntucve 5
cve 5
prion 5
zdi 1
securityvulns 2
openvas
openvas
Google Chrome Multiple Vulnerabilities - Jan12 (Mac OS X)
2012-01-25 00:00:00
Gentoo Security Advisory GLSA 201201-17 (chromium)
2012-02-12 00:00:00
Google Chrome Multiple Vulnerabilities - Jan12 (Windows)
2012-01-25 00:00:00
threatpost
threatpost
Google Fixes Serious Flaws in Chrome, Including Critical Safe Browsing Bug
2012-01-24 16:53:54
nessus
nessus
Google Chrome < 16.0.912.77 Multiple Vulnerabilities
2012-01-25 00:00:00
Google Chrome < 16.0.912.77 Multiple Vulnerabilities
2012-01-24 00:00:00
GLSA-201201-17 : Chromium: Multiple vulnerabilities
2012-01-30 00:00:00
chrome
chrome
Stable Channel Update
2012-01-23 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2012-01-23 00:00:00
chromium -- multiple vulnerabilities
2012-01-05 00:00:00
debiancve
debiancve
CVE-2011-3926
2012-01-24 04:03:00
CVE-2011-3925
2012-01-24 04:03:00
CVE-2011-3924
2012-01-24 04:03:00
ubuntucve
ubuntucve
CVE-2011-3926
2012-01-24 00:00:00
CVE-2011-3925
2012-01-24 00:00:00
CVE-2011-3928
2012-01-24 00:00:00
cve
cve
CVE-2011-3926
2012-01-24 04:03:00
CVE-2011-3925
2012-01-24 04:03:00
CVE-2011-3927
2012-01-24 04:03:00
prion
prion
Design/Logic Flaw
2012-01-24 04:03:00
Heap overflow
2012-01-24 04:03:00
Design/Logic Flaw
2012-01-24 04:03:00
zdi
zdi
Webkit.org Webkit copyNonAttributeProperties Remote Code Execution Vulnerability
2012-04-09 00:00:00
securityvulns
securityvulns
APPLE-SA-2012-03-07-2 iOS 5.1 Software Update
2012-03-09 00:00:00
APPLE-SA-2012-09-19-1 iOS 6
2012-09-24 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.3%

JSON
Related for GLSA-201201-17
openvas20threatpost1nessus19chrome1freebsd2debiancve5ubuntucve5cve5prion5zdi1securityvulns2