VuXML: chromium -- multiple vulnerabilities

Affected packages

chromium

48.0.2564.82

chromium-npapi

48.0.2564.82

chromium-pulse

48.0.2564.82

Details

VuXML ID	371bbea9-3836-4832-9e70-e8e928727f8c
Discovery	2016-01-20
Entry	2016-01-21

VuXML ID

371bbea9-3836-4832-9e70-e8e928727f8c

Discovery

2016-01-20

Entry

2016-01-21

Google Chrome Releases reports:

This update includes 37 security fixes, including:

[497632] High CVE-2016-1612: Bad cast in V8.

[572871] High CVE-2016-1613: Use-after-free in PDFium.

[544691] Medium CVE-2016-1614: Information leak in Blink.

[468179] Medium CVE-2016-1615: Origin confusion in Omnibox.

[541415] Medium CVE-2016-1616: URL Spoofing.

[544765] Medium CVE-2016-1617: History sniffing with HSTS and CSP.

[552749] Medium CVE-2016-1618: Weak random number generator in Blink.

[557223] Medium CVE-2016-1619: Out-of-bounds read in PDFium.

[579625] CVE-2016-1620: Various fixes from internal audits, fuzzing and other initiatives.

Multiple vulnerabilities in V8 fixed at the tip of the 4.8 branch.

[source]

References

CVE Name

CVE-2016-1612

CVE Name

CVE-2016-1613

CVE Name

CVE-2016-1614

CVE Name

CVE-2016-1615

CVE Name

CVE-2016-1616

CVE Name

CVE-2016-1617

CVE Name

CVE-2016-1618

CVE Name

CVE-2016-1619

CVE Name

CVE-2016-1620

URL

http://googlechromereleases.blogspot.de/2016/01/stable-channel-update_20.html