Search This Blog

Friday, May 01, 2015

[SECURITY] [DSA 3242-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3242-1 security@debian.org
http://www.debian.org/security/ Michael Gilbert
April 30, 2015 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : chromium-browser
CVE ID : CVE-2015-1243 CVE-2015-1250

Several vulnerabilities were discovered in the chromium web browser.

CVE-2015-1243

Saif El-Sherei discovered a use-after-free issue.

CVE-2015-1250

The chrome 42 team found and fixed multiple issues during internal
auditing.

For the stable distribution (jessie), these problems have been fixed in
version 42.0.2311.135-1~deb8u1.

For the testing distribution (stretch), this problem will be fixed soon.

For the unstable distribution (sid), these problems have been fixed in
version 42.0.2311.135-1.

We recommend that you upgrade your chromium-browser packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=
=oHz+
-----END PGP SIGNATURE-----


--
To UNSUBSCRIBE, email to debian-security-announce-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: https://lists.debian.org/E1Yo9XS-0001k8-Vd@alpha.psidef.org

No comments: