6 matches found
MGASA-2013-0234 Updated chromium-browser-stable packages fix security vulnerabilities
Updated chromium-browser-stable packages fix security vulnerabilities: The HTTPS implementation does not ensure that headers are terminated by \r\n\r\n carriage return, newline, carriage return, newline CVE-2013-2853. Chrome does not properly prevent pop-under windows CVE-2013-2867...
[SECURITY] [DSA 2724-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2724-1 [email protected] http://www.debian.org/security/ Michael Gilbert July 17, 2013 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2724-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2724-1 [email protected] http://www.debian.org/security/ Michael Gilbert July 17, 2013 http://www.debian.org/security/faq -...
Google Chrome < 28.0.1500.71 Multiple Vulnerabilities
Binary data 6920.pasl...
CVE-2013-2853
CVE-2013-2853 is a vulnerability in the Chromium/Chrome HTTPS implementation where headers are not guaranteed to terminate with "\r\n\r\n", enabling a man‑in‑the‑middle attack with the potential for partial confidentiality/integrity impact. Public advisories (Debian DSA-2724/DSA-2724-1, Gentoo GL...
Stable Channel Update
Update: We are separately updating users to Flash Player 11.8.800.97 via our component updater. The Stable channel has been updated to 28.0.1500.71 for Windows, Macintosh and Chrome Frame platforms. Security fixes and rewards: Please see the Chromium security page for more information. Note that...