FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

www/chromium -- multiple vulnerabilities

Affected packages
	chromium	<	43.0.2357.130
	chromium-npapi	<	43.0.2357.130
	chromium-pulse	<	43.0.2357.130

Details

VuXML ID	d46ed7b8-1912-11e5-9fdf-00262d5ed8ee
Discovery	2015-06-22
Entry	2015-06-22

Google Chrome Releases reports:

4 security fixes in this release:

[464922] High CVE-2015-1266: Scheme validation error in WebUI. Credit to anonymous.

[494640] High CVE-2015-1268: Cross-origin bypass in Blink. Credit to Mariusz Mlynski.

[497507] Medium CVE-2015-1267: Cross-origin bypass in Blink. Credit to anonymous.

[461481] Medium CVE-2015-1269: Normalization error in HSTS/HPKP preload list. Credit to Mike Ruddy.

[source]

References

CVE Name	CVE-2015-1266
CVE Name	CVE-2015-1267
CVE Name	CVE-2015-1268
CVE Name	CVE-2015-1269
URL	http://googlechromereleases.blogspot.nl/2015/06/chrome-stable-update.html