Here's the (hopefully last) daily security bump for Chromium.
Please stabilize =www-client/chromium-17.0.963.79.
x86 stable
amd64 stable. Wonder if we can get emerge or genlop to output the number of digits of pi I could have calculated in the time spent building this over the last week...
And this version doesn't load *any* plug-ins. I'm not sure that's an improvement.
Sorry, ignore that. Apparently, chrome left itself loaded and that caused the disagreement. When I figured that out, and couldn't find where the windows were, I pkilled it (a few times) to force a proper reload.
Thanks, everyone. Already on a GLSA draft.
CVE-2011-3047 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3047): The GPU process in Google Chrome before 17.0.963.79 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) by leveraging an error in the plug-in loading mechanism.
This issue was resolved and addressed in GLSA 201203-19 at http://security.gentoo.org/glsa/glsa-201203-19.xml by GLSA coordinator Tim Sammut (underling).