Ubuntu
chromium-browser package

chromium-browser 16.0.912.75~r116452-0ubuntu0.11.10.1 source package in Ubuntu

Changelog

chromium-browser (16.0.912.75~r116452-0ubuntu0.11.10.1) oneiric-security; urgency=low

  * New upstream release from the Stable Channel (LP: #914648, #889711)
    This release fixes the following security issues:
    - [106672] High CVE-2011-3921: Use-after-free in animation frames. Credit to
      Boris Zbarsky of Mozilla.
    - [107128] High CVE-2011-3919: Heap-buffer-overflow in libxml. Credit to
      Jüri Aedla.
    - [108006] High CVE-2011-3922: Stack-buffer-overflow in glyph handling.
      Credit to Google Chrome Security Team (Cris Neckar).

    This upload also includes the following security fixes from 16.0.912.63:
    - [81753] Medium CVE-2011-3903: Out-of-bounds read in regex matching. Credit
      to David Holloway of the Chromium development community.
    - [95465] Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google
      Chrome Security Team (Inferno).
    - [98809] Medium CVE-2011-3906: Out-of-bounds read in PDF parser. Credit to
      Aki Helin of OUSPG.
    - [99016] High CVE-2011-3907: URL bar spoofing with view-source. Credit to
      Luka Treiber of ACROS Security.
    - [100863] Low CVE-2011-3908: Out-of-bounds read in SVG parsing. Credit to
      Aki Helin of OUSPG.
    - [101010] Medium CVE-2011-3909: [64-bit only] Memory corruption in CSS
      property array. Credit to Google Chrome Security Team (scarybeasts) and
      Chu.
    - [101494] Medium CVE-2011-3910: Out-of-bounds read in YUV video frame
      handling. Credit to Google Chrome Security Team (Cris Neckar).
    - [101779] Medium CVE-2011-3911: Out-of-bounds read in PDF. Credit to Google
      Chrome Security Team (scarybeasts) and Robert Swiecki of the Google
      Security Team.
    - [102359] High CVE-2011-3912: Use-after-free in SVG filters. Credit to
      Arthur Gerkis.
    - [103921] High CVE-2011-3913: Use-after-free in Range handling. Credit to
      Arthur Gerkis.
    - [104011] High CVE-2011-3914: Out-of-bounds write in v8 i18n handling.
      Credit to Sławomir Błażek.
    - [104529] High CVE-2011-3915: Buffer overflow in PDF font handling. Credit
      to Atte Kettunen of OUSPG.
    - [104959] Medium CVE-2011-3916: Out-of-bounds reads in PDF cross
      references. Credit to Atte Kettunen of OUSPG.
    - [105162] Medium CVE-2011-3917: Stack-buffer-overflow in FileWatcher.
      Credit to Google Chrome Security Team (Marty Barbella).
    - [107258] High CVE-2011-3904: Use-after-free in bidi handling. Credit to
      Google Chrome Security Team (Inferno) and miaubiz.

    This upload also includes the following security fixes from 15.0.874.121:
    - [103259] High CVE-2011-3900: Out-of-bounds write in v8. Credit to
      Christian Holler.

    This upload also includes the following security fixes from 15.0.874.120:
    - [100465] High CVE-2011-3892: Double free in Theora decoder. Credit to Aki
      Helin of OUSPG.
    - [100492] [100543] Medium CVE-2011-3893: Out of bounds reads in MKV and
      Vorbis media handlers. Credit to Aki Helin of OUSPG.
    - [101172] High CVE-2011-3894: Memory corruption regression in VP8 decoding.
      Credit to Andrew Scherkus of the Chromium development community.
    - [101458] High CVE-2011-3895: Heap overflow in Vorbis decoder. Credit to
      Aki Helin of OUSPG.
    - [101624] High CVE-2011-3896: Buffer overflow in shader variable mapping.
      Credit to Ken “strcpy” Russell of the Chromium development community.
    - [102242] High CVE-2011-3897: Use-after-free in editing. Credit to pa_kt
      reported through ZDI (ZDI-CAN-1416).

  [ Brandon Snider <email address hidden> ]
  * Refresh patch
    - update debian/patches/chromium_useragent.patch.in
 -- Micah Gersten <email address hidden>   Fri, 13 Jan 2012 06:36:18 +0100

Upload details

Uploaded by:
Micah Gersten
Uploaded to:
Oneiric
Original maintainer:
Fabien Tassin
Architectures:
any
Section:
web
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
chromium-browser_16.0.912.75~r116452.orig.tar.gz 211.2 MiB d5f6fc9028d471d738a962d1cf02a3cfefd117a1113be3ae8d65fd83a86aa1db
chromium-browser_16.0.912.75~r116452-0ubuntu0.11.10.1.diff.gz 203.3 KiB e0143599d8a8b1bb69930291e4182538ea5b5150dec71d55a548c2fee5bd2777
chromium-browser_16.0.912.75~r116452-0ubuntu0.11.10.1.dsc 2.1 KiB 871c02de65597e0941220211f9d9ccc8973333fde5dc59d1ee1b26c75f7a16ec

View changes file

Binary packages built by this source

chromium-browser: No summary available for chromium-browser in ubuntu oneiric.

No description available for chromium-browser in ubuntu oneiric.

chromium-browser-dbg: No summary available for chromium-browser-dbg in ubuntu oneiric.

No description available for chromium-browser-dbg in ubuntu oneiric.

chromium-browser-l10n: No summary available for chromium-browser-l10n in ubuntu oneiric.

No description available for chromium-browser-l10n in ubuntu oneiric.

chromium-codecs-ffmpeg: No summary available for chromium-codecs-ffmpeg in ubuntu oneiric.

No description available for chromium-codecs-ffmpeg in ubuntu oneiric.

chromium-codecs-ffmpeg-dbg: No summary available for chromium-codecs-ffmpeg-dbg in ubuntu oneiric.

No description available for chromium-codecs-ffmpeg-dbg in ubuntu oneiric.

chromium-codecs-ffmpeg-extra: No summary available for chromium-codecs-ffmpeg-extra in ubuntu oneiric.

No description available for chromium-codecs-ffmpeg-extra in ubuntu oneiric.

chromium-codecs-ffmpeg-extra-dbg: No summary available for chromium-codecs-ffmpeg-extra-dbg in ubuntu oneiric.

No description available for chromium-codecs-ffmpeg-extra-dbg in ubuntu oneiric.