Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201208-03
HistoryAug 14, 2012 - 12:00 a.m.

Chromium: Multiple vulnerabilities

2012-08-1400:00:00
Gentoo Foundation
security.gentoo.org
22

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.026 Low

EPSS

Percentile

90.3%

JSON

Background

Chromium is an open source web browser project.

Description

Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers and release notes referenced below for details.

Impact

A remote attacker could entice a user to open a specially crafted web site using Chromium, possibly resulting in the execution of arbitrary code with the privileges of the process, a Denial of Service condition, disclosure of sensitive information, or other unspecified impact.

Workaround

There is no known workaround at this time.

Resolution

All Chromium users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=www-client/chromium-21.0.1180.57"
OSVersionArchitecturePackageVersionFilename
Gentooanyallwww-client/chromium< 21.0.1180.57UNKNOWN

Related

openvas 41
nessus 25
freebsd 3
chrome 3
threatpost 3
suse 1
debiancve 27
ubuntucve 27
cve 27
prion 27
securityvulns 4
thn 1
android 1
oraclelinux 1
fedora 3
veracode 4
amazon 1
openvas
openvas
Gentoo Security Advisory GLSA 201208-03 (chromium)
2012-08-30 00:00:00
Gentoo Security Advisory GLSA 201208-03 (chromium)
2012-08-30 00:00:00
Google Chrome Multiple Vulnerabilities - July 12 (Linux)
2012-07-04 00:00:00
nessus
nessus
GLSA-201208-03 : Chromium: Multiple vulnerabilities
2012-08-15 00:00:00
openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0813-1)
2014-06-13 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (ff922811-c096-11e1-b0f4-00262d5ed8ee)
2012-06-28 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2012-06-26 00:00:00
chromium -- multiple vulnerabilities
2012-07-31 00:00:00
www/chromium -- multiple vulnerabilities
2012-07-11 00:00:00
chrome
chrome
Stable Channel Release
2012-07-31 00:00:00
Stable Channel Update
2012-06-26 00:00:00
Stable Channel Update
2012-07-11 00:00:00
threatpost
threatpost
Google Chrome 21 Fixes Six High-Risk Vulnerabilities
2012-07-31 21:15:08
Google Releases Chrome 20 With Fixes for 20 Security Vulnerabilities
2012-06-27 15:34:15
Google Patches Three High-Priority Flaws in Chrome 20
2012-07-11 17:48:09
suse
suse
update for chromium, v8 (important)
2012-08-15 16:09:13
debiancve
debiancve
CVE-2012-2823
2012-06-27 10:18:00
CVE-2012-2843
2012-07-12 21:55:00
CVE-2012-2824
2012-06-27 10:18:00
ubuntucve
ubuntucve
CVE-2012-2823
2012-06-27 00:00:00
CVE-2012-2854
2012-08-06 00:00:00
CVE-2012-2859
2012-08-06 00:00:00
cve
cve
CVE-2012-2859
2012-08-06 15:55:00
CVE-2012-2846
2012-08-06 15:55:00
CVE-2012-2820
2012-06-27 10:18:00
prion
prion
Code injection
2012-08-06 15:55:00
Null pointer dereference
2012-08-06 15:55:00
Design/Logic Flaw
2012-06-27 10:18:00
securityvulns
securityvulns
libxslt DoS
2012-07-30 00:00:00
[ MDVSA-2012:109 ] libxslt
2012-07-30 00:00:00
[ MDVSA-2014:006 ] libxslt
2014-01-19 00:00:00
thn
thn
RCSAndroid — Advanced Android Hacking Tool Leaked Online
2015-07-24 02:52:00
android
android
Android Browser Exploit WebKit
2011-02-22 00:00:00
oraclelinux
oraclelinux
libxslt security update
2012-09-13 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: libxslt-1.1.27-2.fc18
2012-12-09 06:31:24
[SECURITY] Fedora 17 Update: libxslt-1.1.26-10.fc17
2012-09-26 09:11:57
[SECURITY] Fedora 16 Update: libxslt-1.1.26-9.fc16
2012-09-27 04:27:12
veracode
veracode
Out-Of-Bounds Read
2019-05-02 04:43:13
Denial Of Service (DoS)
2019-05-02 04:43:13
Denial Of Service (DoS)
2019-05-02 04:43:13
amazon
amazon
Important: libxslt
2012-09-22 21:33:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.026 Low

EPSS

Percentile

90.3%

JSON
Related for GLSA-201208-03
openvas41nessus25freebsd3chrome3threatpost3suse1debiancve27ubuntucve27cve27prion27securityvulns4thn1android1oraclelinux1fedora3veracode4amazon1