FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple vulnerabilities

Affected packages
chromium < 17.0.963.65

Details

VuXML ID 99aef698-66ed-11e1-8288-00262d5ed8ee
Discovery 2012-03-04
Entry 2012-03-05

Google Chrome Releases reports:

[105867] High CVE-2011-3031: Use-after-free in v8 element wrapper. Credit to Chamal de Silva.

[108037] High CVE-2011-3032: Use-after-free in SVG value handling. Credit to Arthur Gerkis.

[108406] [115471] High CVE-2011-3033: Buffer overflow in the Skia drawing library. Credit to Aki Helin of OUSPG.

[111748] High CVE-2011-3034: Use-after-free in SVG document handling. Credit to Arthur Gerkis.

[112212] High CVE-2011-3035: Use-after-free in SVG use handling. Credit to Arthur Gerkis.

[113258] High CVE-2011-3036: Bad cast in line box handling. Credit to miaubiz.

[113439] [114924] [115028] High CVE-2011-3037: Bad casts in anonymous block splitting. Credit to miaubiz.

[113497] High CVE-2011-3038: Use-after-free in multi-column handling. Credit to miaubiz.

[113707] High CVE-2011-3039: Use-after-free in quote handling. Credit to miaubiz.

[114054] High CVE-2011-3040: Out-of-bounds read in text handling. Credit to miaubiz.

[114068] High CVE-2011-3041: Use-after-free in class attribute handling. Credit to miaubiz.

[114219] High CVE-2011-3042: Use-after-free in table section handling. Credit to miaubiz.

[115681] High CVE-2011-3043: Use-after-free in flexbox with floats. Credit to miaubiz.

[116093] High CVE-2011-3044: Use-after-free with SVG animation elements. Credit to Arthur Gerkis.

References

CVE Name CVE-2011-3031
CVE Name CVE-2011-3032
CVE Name CVE-2011-3033
CVE Name CVE-2011-3034
CVE Name CVE-2011-3035
CVE Name CVE-2011-3036
CVE Name CVE-2011-3037
CVE Name CVE-2011-3038
CVE Name CVE-2011-3039
CVE Name CVE-2011-3040
CVE Name CVE-2011-3041
CVE Name CVE-2011-3042
CVE Name CVE-2011-3043
CVE Name CVE-2011-3044
URL http://googlechromereleases.blogspot.com/search/label/Stable%20updates