383907 – <www-client/google-chrome-14.0.835.186 Flash Player Unspecified Vulnerabilities (CVE-2011-{2426,2427,2428,2429,2430,2444}

Bug 383907 - <www-client/google-chrome-14.0.835.186 Flash Player Unspecified Vulnerabilities (CVE-2011-{2426,2427,2428,2429,2430,2444}

Summary: <www-client/google-chrome-14.0.835.186 Flash Player Unspecified Vulnerabiliti...

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal trivial (vote)
Assignee:	Gentoo Security

URL:	http://googlechromereleases.blogspot....
Whiteboard:	~4 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2011-09-21 10:14 UTC by Agostino Sarubbo
Modified:	2011-12-08 17:51 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Agostino Sarubbo gentoo-dev

2011-09-21 10:14:53 UTC

This release includes an update to Flash Player that addresses a zero-day vulnerability.

Please bump: www-client/chromium-14.0.835.186

Comment 1 Mike Gilbert gentoo-dev

2011-09-21 13:24:28 UTC

Chromium does NOT use the bundled flash player, so there is no need to bump it.

However, Google Chrome on x86 is affected. Patched versions were added to the tree last yesterday:

www-client/google-chrome-14.0.835.186_beta101821
www-client/google-chrome-14.0.835.186_p101821

www-client/google-chrome has no stable keywords.

Comment 2 Agostino Sarubbo gentoo-dev

2011-09-21 15:20:39 UTC

Thanks Mike, sorry for misunderstood.

As per ~4 close as resolved fixed with noglsa.