Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 354121 (CVE-2011-0981)

Summary: <www-client/chromium-9.0.597.94: multiple vulnerabilities (CVE-2011-{0981,0982,0983,0984,0985})
Product: Gentoo Security Reporter: Paweł Hajdan, Jr. (RETIRED) <phajdan.jr>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: chromium
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html
Whiteboard: B2 [glsa]
Package list:
Runtime testing required: ---

Description Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2011-02-08 18:02:41 UTC
Release notes: http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html

At this moment we have no CVE numbers for the vulnerabilities described here.

Synopsis:

Multiple vulnerabilities have been reported in Chromium, some of which may
allow user-assisted execution of arbitrary code within the confines of the sandbox.

Impact:

A remote attacker could entice a user to visit a specially-crafted web page that would trigger one of the vulnerabilities, leading to execution of arbitrary code within confines of the sandbox, or a Denial of Service.

I will update chromium-bin soon, we're not going to stabilize it (fully ~arch).
Comment 1 Bernard Cafarelli gentoo-dev 2011-02-10 11:07:31 UTC
chromium-9.0.597.94 is in CVS now
Comment 2 Tim Sammut (RETIRED) gentoo-dev 2011-02-10 13:42:52 UTC
(In reply to comment #1)
> chromium-9.0.597.94 is in CVS now
> 

Great, thank you.

Arches, please test and mark stable:
=www-client/chromium-9.0.597.94
Target keywords : "amd64 x86"

Comment 3 Agostino Sarubbo gentoo-dev 2011-02-10 18:53:16 UTC
works for me on amd64
Comment 4 Markos Chandras (RETIRED) gentoo-dev 2011-02-10 22:12:02 UTC
amd64 done. Thanks Agostino
Comment 5 Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2011-02-11 13:09:37 UTC
x86 stable
Comment 6 Tim Sammut (RETIRED) gentoo-dev 2011-02-12 19:06:21 UTC
Thanks, folks. Added to existing GLSA request.
Comment 7 GLSAMaker/CVETool Bot gentoo-dev 2011-11-01 10:01:40 UTC
This issue was resolved and addressed in
 GLSA 201111-01 at http://security.gentoo.org/glsa/glsa-201111-01.xml
by GLSA coordinator Alex Legler (a3li).
Comment 8 GLSAMaker/CVETool Bot gentoo-dev 2011-11-01 10:02:41 UTC
This issue was resolved and addressed in
 GLSA 201111-01 at http://security.gentoo.org/glsa/glsa-201111-01.xml
by GLSA coordinator Alex Legler (a3li).
Comment 9 GLSAMaker/CVETool Bot gentoo-dev 2012-09-11 00:22:00 UTC
CVE-2011-0985 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0985):
  Google Chrome before 9.0.597.94 does not properly perform process
  termination upon memory exhaustion, which has unspecified impact and remote
  attack vectors.

CVE-2011-0984 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0984):
  Google Chrome before 9.0.597.94 does not properly handle plug-ins, which
  allows remote attackers to cause a denial of service (out-of-bounds read)
  via unspecified vectors.

CVE-2011-0983 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0983):
  Google Chrome before 9.0.597.94 does not properly handle anonymous blocks,
  which allows remote attackers to cause a denial of service or possibly have
  unspecified other impact via unknown vectors that lead to a "stale pointer."

CVE-2011-0982 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0982):
  Use-after-free vulnerability in Google Chrome before 9.0.597.94 allows
  remote attackers to cause a denial of service or possibly have unspecified
  other impact via vectors involving SVG font faces.

CVE-2011-0981 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0981):
  Google Chrome before 9.0.597.94 does not properly perform event handling for
  animations, which allows remote attackers to cause a denial of service or
  possibly have unspecified other impact via unknown vectors that lead to a
  "stale pointer."