Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code and local root privilege escalation.
|Package||www-client/chromium on all architectures|
|Affected versions||< 15.0.874.102|
|Unaffected versions||>= 15.0.874.102|
|Package||dev-lang/v8 on all architectures|
|Affected versions||< 188.8.131.52|
|Unaffected versions||>= 184.108.40.206|
Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details.
A local attacker could gain root privileges (CVE-2011-1444, fixed in chromium-11.0.696.57).
There is no known workaround at this time.
All Chromium users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-client/chromium-15.0.874.102"
All V8 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=dev-lang/v8-220.127.116.11"