FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2013-2872

This CVE name corresponds to:

Entered Topic
2013-07-10 chromium -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2013-2872 at cve.mitre.org

Details

Type Candidate
Name CVE-2013-2872
Phase Assigned(20130411)

Description

Google Chrome before 28.0.1500.71 on Mac OS X does not ensure a sufficient source of entropy for renderer processes, which might make it easier for remote attackers to defeat cryptographic protection mechanisms in third-party components via unspecified vectors.

References

Source Reference
CONFIRM http://git.chromium.org/gitweb/?p=chromium/chromium.git;a=commit;h=5e3678ea33ab00b5977bde219cd9ec6f1768d78a
CONFIRM http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html
CONFIRM https://code.google.com/p/chromium/issues/detail?id=242702

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.