Chromium: Multiple vulnerabilities — GLSA 201012-01

Multiple vulnerabilities have been reported in Chromium, some of which may allow user-assisted execution of arbitrary code.

Affected packages

Background

Chromium is an open-source web browser project.

Description

Multiple vulnerabilities were found in Chromium. For further information please consult the release notes referenced below.

Impact

A remote attacker could trick a user to perform a set of UI actions that trigger a possibly exploitable crash, leading to execution of arbitrary code or a Denial of Service.

It was also possible for an attacker to entice a user to visit a specially-crafted web page that would trigger one of the vulnerabilities, leading to execution of arbitrary code within the confines of the sandbox, successful Cross-Site Scripting attacks, violation of the same-origin policy, successful website spoofing attacks, information leak, or a Denial of Service. An attacker could also trick a user to perform a set of UI actions that might result in a successful website spoofing attack.

Multiple bugs in the sandbox could result in a sandbox escape.

Multiple UI bugs could lead to information leak and successful website spoofing attacks.

Workaround

There is no known workaround at this time.

Resolution

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=www-client/chromium-8.0.552.224"

References

• Release Notes 5.0.375.86
• Release Notes 5.0.375.99
• Release Notes 5.0.375.125
• Release Notes 5.0.375.127
• Release Notes 6.0.472.59
• Release Notes 6.0.472.62
• Release Notes 7.0.517.41
• Release Notes 7.0.517.44
• Release Notes 8.0.552.215
• Release Notes 8.0.552.224

Release date
December 17, 2010

Latest revision
December 17, 2010: 01

Severity
normal

Exploitable
remote

Bugzilla entries

• 325451
• 326717
• 330003
• 333559
• 335750
• 338204
• 341797
• 344201
• 347625
• 348651