[ubuntu/trusty-security] chromium-browser 48.0.2564.82-0ubuntu0.14.04.1.1108 (Accepted)

Chris Coulson chris.coulson at canonical.com
Mon Jan 25 21:00:56 UTC 2016


chromium-browser (48.0.2564.82-0ubuntu0.14.04.1.1108) trusty-security; urgency=medium

  * Upstream release 48.0.2564.82:
    - CVE-2016-1612: Bad cast in V8.
    - CVE-2016-1613: Use-after-free in PDFium.
    - CVE-2016-1614: Information leak in Blink.
    - CVE-2016-1615: Origin confusion in Omnibox.
    - CVE-2016-1616: URL Spoofing.
    - CVE-2016-1617: History sniffing with HSTS and CSP. 
    - CVE-2016-1618: Weak random number generator in Blink. 
    - CVE-2016-1619: Out-of-bounds read in PDFium.
    - CVE-2016-1620: Various fixes from internal audits, fuzzing and other
      initiatives.
    - Multiple vulnerabilities in V8 fixed at the tip of the 4.8 branch
      (currently 4.8.271.17).

Date: 2016-01-22 15:10:12.927031+00:00
Changed-By: Chad Miller <chad.miller at canonical.com>
Signed-By: Chris Coulson <chris.coulson at canonical.com>
https://launchpad.net/ubuntu/+source/chromium-browser/48.0.2564.82-0ubuntu0.14.04.1.1108
-------------- next part --------------
Sorry, changesfile not available.


More information about the Trusty-changes mailing list