chromium-browser 24.0.1312.56-0ubuntu0.12.04.1 source package in Ubuntu
Changelog
chromium-browser (24.0.1312.56-0ubuntu0.12.04.1) precise-security; urgency=low * debian/chromium-browser.install - Install remoting locales * debian/patches/gyp-config-root.patch - Added. Avoids compilation bug on (at least) ARM. * debian/patches/arm-neon.patch - Added function to determine NEON functionality in ARM at runtime for WebRt library in WebKit. * Disable lintian warnings about outdated autoconf files in source tree. * New upstream version 24.0.1312.56: (LP: #1099075) - CVE-2013-0839: Use-after-free in canvas font handling. - CVE-2013-0840: Missing URL validation when opening new windows. - CVE-2013-0841: Unchecked array index in content blocking. - CVE-2013-0842: Problems with NULL characters embedded in paths. * New upstream version 24.0.1312.52: - CVE-2012-5145: Use-after-free in SVG layout. Credit to Atte Kettunen of OUSPG. - CVE-2012-5146: Same origin policy bypass with malformed URL. Credit to Erling A Ellingsen and Subodh Iyengar, both of Facebook. - CVE-2012-5147: Use-after-free in DOM handling. Credit to José A. Vázquez. - CVE-2012-5148: Missing filename sanitization in hyphenation support. Credit to Google Chrome Security Team (Justin Schuh). - CVE-2012-5149: Integer overflow in audio IPC handling. Credit to Google Chrome Security Team (Chris Evans). - CVE-2012-5150: Use-after-free when seeking video. Credit to Google Chrome Security Team (Inferno). - CVE-2012-5151: Integer overflow in PDF JavaScript. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. - CVE-2012-5152: Out-of-bounds read when seeking video. Credit to Google Chrome Security Team (Inferno). - CVE-2012-5153: Out-of-bounds stack access in v8. Credit to Andreas Rossberg of the Chromium development community. - CVE-2012-5156: Use-after-free in PDF fields. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. - CVE-2012-5157: Out-of-bounds reads in PDF image handling. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. - CVE-2013-0828: Bad cast in PDF root handling. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. - CVE-2013-0829: Corruption of database metadata leading to incorrect file access. Credit to Google Chrome Security Team (Jüri Aedla). - CVE-2013-0830: Missing NUL termination in IPC. Credit to Google Chrome Security Team (Justin Schuh). - CVE-2013-0831: Possible path traversal from extension process. Credit to Google Chrome Security Team (Tom Sepez). - CVE-2013-0832: Use-after-free with printing. Credit to Google Chrome Security Team (Cris Neckar). - CVE-2013-0833: Out-of-bounds read with printing. Credit to Google Chrome Security Team (Cris Neckar). - CVE-2013-0834: Out-of-bounds read with glyph handling. Credit to Google Chrome Security Team (Cris Neckar). - CVE-2013-0835: Browser crash with geolocation. Credit to Arthur Gerkis. - CVE-2013-0836: Crash in v8 garbage collection. Credit to Google Chrome Security Team (Cris Neckar). - CVE-2013-0837: Crash in extension tab handling. Credit to Tom Nielsen. - CVE-2013-0838: Tighten permissions on shared memory segments. Credit to Google Chrome Security Team (Chris Palmer). -- Chad Miller <email address hidden> Wed, 23 Jan 2013 15:12:26 -0500
Upload details
- Uploaded by:
- Chad Miller
- Sponsored by:
- Jamie Strandboge
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
chromium-browser_24.0.1312.56.orig.tar.xz | 309.4 MiB | 03506562d70892230772f3dc29b2c28782764854ee4766ea639f4afcc2ffc689 |
chromium-browser_24.0.1312.56-0ubuntu0.12.04.1.debian.tar.gz | 209.9 KiB | 55b66666972a705461f6acf915dec469f280cf2e71fb28ac8af0afa4d5cb3a52 |
chromium-browser_24.0.1312.56-0ubuntu0.12.04.1.dsc | 3.1 KiB | 2a95dd78f84e20f8b488e05d0193601ac51520d513456724c102e48097c2574e |
Available diffs
Binary packages built by this source
- chromium-browser: Chromium browser
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
Chromium serves as a base for Google Chrome, which is Chromium rebranded (name
and logo) with very few additions such as usage tracking and an auto-updater
system.
.
This package contains the Chromium browser
- chromium-browser-dbg: chromium-browser debug symbols
Debug symbols for the Chromium browser
- chromium-browser-l10n: chromium-browser language packages
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
This package contains language packages for 65 languages:
am, ar, ast, bg, bn, bs, ca, ca@valencia, cs, da, de, el, en-AU, en-GB, eo,
es-419, es, et, eu, fa, fil, fi, fr, gl, gu, he, hi, hr, hu, hy, ia, id, it,
ja, ka, kn, ko, ku, kw, lt, lv, ml, mr, ms, nb, nl, pl, pt-BR, pt-PT, ro, ru,
sk, sl, sr, sv, sw, ta, te, th, tr, ug, uk, vi, zh-CN, zh-TW
- chromium-codecs-ffmpeg: Free ffmpeg codecs for the Chromium Browser
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
This package contains the multi-threaded ffmpeg codecs needed for the HTML5
<audio> and <video> tags. Only the free ogg, vorbis and theora codecs are
included. See chromium-codecs- ffmpeg- extra for additionnal codecs
- chromium-codecs-ffmpeg-dbg: chromium-codecs-ffmpeg debug symbols
Debug symbols for the free ffmpeg-mt codecs
- chromium-codecs-ffmpeg-extra: Extra ffmpeg codecs for the Chromium Browser
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
This package contains the multi-threaded ffmpeg codecs needed for the HTML5
<audio> and <video> tags. In addition to the patent-free ogg, vorbis and
theora codecs, aac/ac3/mpeg4audio/ h264/mov/ mp3 are also included. See
chromium-codecs- ffmpeg if you prefer only the patent-free codecs
- chromium-codecs-ffmpeg-extra-dbg: chromium-codecs-ffmpeg-extra debug symbols
Debug symbols for the extra ffmpeg-mt codecs