Chromium: Multiple vulnerabilities — GLSA 201507-18

Multiple vulnerabilities have been found in Chromium allowing remote attackers to bypass security restrictions.

Affected Packages

www-client/chromium on all architectures
Affected versions < 43.0.2357.130
Unaffected versions >= 43.0.2357.130

Background

Chromium is an open-source web browser project.

Description

Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could bypass security restrictions.

Workaround

There is no known workaround at this time.

Resolution

All Chromium users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=www-client/chromium-43.0.2357.130"
 

References

Release Date
July 10, 2015

Latest Revision
July 10, 2015: 1

Severity
normal

Exploitable
remote

Bugzilla entries