A special reward for Andrey Labunets for his combination of
CVE-2013-2879 and CVE-2013-2868 along with some (since fixed)
server-side bugs.
[252216] Low CVE-2013-2867: Block pop-unders in various
scenarios.
[252062] High CVE-2013-2879: Confusion setting up sign-in and sync.
Credit to Andrey Labunets.
[252034] Medium CVE-2013-2868: Incorrect sync of NPAPI extension
component. Credit to Andrey Labunets.
[245153] Medium CVE-2013-2869: Out-of-bounds read in JPEG2000
handling. Credit to Felix Groebert of Google Security Team.
[244746] [242762] Critical CVE-2013-2870: Use-after-free with
network sockets. Credit to Collin Payne.
[244260] Medium CVE-2013-2853: Man-in-the-middle attack against
HTTP in SSL. Credit to Antoine Delignat-Lavaud and Karthikeyan
Bhargavan from Prosecco at INRIA Paris.
[243991] [243818] High CVE-2013-2871: Use-after-free in input
handling. Credit to miaubiz.
[Mac only] [242702] Low CVE-2013-2872: Possible lack of entropy in
renderers. Credit to Eric Rescorla.
[241139] High CVE-2013-2873: Use-after-free in resource loading.
Credit to miaubiz.
[233848] Medium CVE-2013-2875: Out-of-bounds-read in SVG. Credit
to miaubiz.
[229504] Medium CVE-2013-2876: Extensions permissions confusion
with interstitials. Credit to Dev Akhawe.
[229019] Low CVE-2013-2877: Out-of-bounds read in XML parsing.
Credit to Aki Helin of OUSPG.
[196636] None: Remove the "viewsource" attribute on iframes.
Credit to Collin Jackson.
[177197] Medium CVE-2013-2878: Out-of-bounds read in text
handling. Credit to Atte Kettunen of OUSPG.