MGASA-2016-0214

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2016-0214.html
Import Source
https://advisories.mageia.org/MGASA-2016-0214.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2016-0214
Related
  • CVE-2016-1672
  • CVE-2016-1673
  • CVE-2016-1674
  • CVE-2016-1675
  • CVE-2016-1676
  • CVE-2016-1677
  • CVE-2016-1678
  • CVE-2016-1679
  • CVE-2016-1680
  • CVE-2016-1681
  • CVE-2016-1682
  • CVE-2016-1685
  • CVE-2016-1686
  • CVE-2016-1687
  • CVE-2016-1688
  • CVE-2016-1689
  • CVE-2016-1690
  • CVE-2016-1691
  • CVE-2016-1692
  • CVE-2016-1694
  • CVE-2016-1695
Published
2016-06-02T21:40:03Z
Modified
2016-06-02T21:32:49Z
Summary
Updated chromium-browser-stable packages fix security vulnerabilities
Details

Chromium-browser-stable 51.0.2704.63 fixes security issues:

cross-origin bypass problems in extensions bindings (CVE-2016-1672 and CVE-2016-1676), blink (CVE-2016-1673 and CVE-2016-1675), and extensions (CVE-2016-1674)

heap use-after free bugs in V8 bindings (CVE-2016-1679), Skia (CVE-2016-1680), and Autofill (CVE-2016-1690)

heap buffer overflows in V8 (CVE-2016-1678), PDFium (CVE-2016-1681), media (CVE-2016-1689), and Skia (CVE-2016-1691)

out-of-bounds read errors in PDFium (CVE-2016-1685 and CVE-2016-1686) and V8 (CVE-2016-1688)

type confusion in V8 (CVE-2016-1677), a CSP bypass for ServiceWorker (CVE-2016-1682), an information leak in extensions (CVE-2016-1687), a limited cross-origin bypass in ServiceWorker (CVE-2016-1692), and HPKP pins removed on cache clearance (CVE-2016-1694)

various fixes from upstream's internal audits, fuzzing, and other initiatives (CVE-2016-1695)

References
Credits

Affected packages

Mageia:5 / chromium-browser-stable

Package

Name
chromium-browser-stable
Purl
pkg:rpm/mageia/chromium-browser-stable?distro=mageia-5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
51.0.2704.63-1.mga5

Ecosystem specific 

{
    "section": "core"
}