Changelog
chromium-browser (6.0.472.53~r57914-3) unstable; urgency=low
* Upload to unstable, this release fixes the following security issue:
- [34414] Low Pop-up blocker bypass with blank frame target. Credit to
Google Chrome Security Team (Inferno) and “ironfist99”.
- [37201] Medium URL bar visual spoofing with homographic sequences. Credit
to Chris Weber of Casaba Security.
- [41654] Medium Apply more restrictions on setting clipboard content.
Credit to Brook Novak.
- [45659] High Stale pointer with SVG filters. Credit to Tavis Ormandy of
the Google Security Team.
- [45876] Medium Possible installed extension enumeration. Credit to
Lostmon.
- [46750] [51846] Low Browser NULL crash with WebSockets. Credit to Google
Chrome Security Team (SkyLined), Google Chrome Security Team
(Justin Schuh) and Keith Campbell.
- [50386] High Use-after-free in Notifications presenter. Credit to Sergey
Glazunov.
- [50839] High Notification permissions memory corruption. Credit to Michal
Zalewski of the Google Security Team and Google Chrome Security Team
(SkyLined).
- [51630] [51739] High Integer errors in WebSockets. Credit to
Keith Campbell and Google Chrome Security Team (Cris Neckar).
- [51653] High Memory corruption with counter nodes. Credit to kuzzcc.
- [51727] Low Avoid storing excessive autocomplete entries. Credit to Google
Chrome Security Team (Inferno).
- [52443] High Stale pointer in focus handling. Credit to VUPEN
Vulnerability Research Team (VUPEN-SR-2010-249).
- [52682] High Sandbox parameter deserialization error. Credit to Ashutosh
Mehra and Vineet Batra of the Adobe Reader Sandbox Team.
- [53001] Medium Cross-origin image theft. Credit to Isaac Dawson.
* Provide gnome-www-browser (Closes: #594057)
* use startup-notification correctly (Closes: #581347)
* the main scrollbar doesn'have anymore low contrast (Closes: #582648)
* check DISPLAY envvar (Closes: #587398)
* Doesn't segfault with cups (Closes: #593748)
-- Giuseppe Iuculano <email address hidden> Tue, 07 Sep 2010 18:49:45 +0200
