Comment 2 for bug 1132568
Revision history for this message
| ilf (ilf) wrote Re: Please update to 25.0.1364.97 | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
4d1350f
(Get the code!)
When will syncing be possible again?
Here are the CVE references:
CVE-2013-0900: Race condition in ICU. Credit to Google Chrome Security Team (Inferno).
CVE-2013-0899: Integer overflow in Opus handling. Credit to Google Chrome Security Team (Jüri Aedla).
CVE-2013-0898: Use-after-free in URL handling. Credit to Alexander Potapenko of the Chromium development community.
CVE-2013-0897: Off-by-one read in PDF. Credit to Mateusz Jurczyk, with contributions by Gynvael Coldwind, both from Google Security Team.
CVE-2013-0896: Memory management issues in plug-in message handling. Credit to Google Chrome Security Team (Cris Neckar).
CVE-2013-0895: Incorrect path handling in file copying. Credit to Google Chrome Security Team (Jüri Aedla).
CVE-2013-0894: Buffer overflow in vorbis decoding. Credit to Google Chrome Security Team (Inferno).
CVE-2013-0893: Race condition in media handling. Credit to Andrew Scherkus of the Chromium development community.
CVE-2013-0892: Lower severity issues across the IPC layer. Credit to Google Chrome Security Team (Chris Evans).
CVE-2013-0891: Integer overflow in blob handling. Credit to Google Chrome Security Team (Jüri Aedla).
CVE-2013-0890: Memory safety issues across the IPC layer. Credit to Google Chrome Security Team (Chris Evans).
CVE-2013-0889: Tighten user gesture check for dangerous file downloads.
CVE-2013-0888: Out-of-bounds read in Skia. Credit to Google Chrome Security Team (Inferno).
CVE-2013-0887: Developer tools process has too many permissions and places too much trust in the connected server.
CVE-2013-0886: Incorrect NaCl signal handling. Credit to Mark Seaborn of the Chromium development community.
CVE-2013-0885: Too many API permissions granted to web store.
CVE-2013-0884: Inappropriate load of NaCl. Credit to Google Chrome Security Team (Chris Evans).
CVE-2013-0883: Bad read in Skia. Credit to Atte Kettunen of OUSPG.
CVE-2013-0882: Bad memory access with excessive SVG parameters. Credit to Renata Hodovan.
CVE-2013-0881: Bad read in Matroska handling. Credit to Atte Kettunen of OUSPG.
CVE-2013-0880: Use-after-free in database handling. Credit to Chamal de Silva.
CVE-2013-0879: Memory corruption with web audio node. Credit to Atte Kettunen of OUSPG.