Chromium: Multiple vulnerabilities

Chromium: Multiple vulnerabilities Multiple vulnerabilities have been reported in Chromium, some of which may allow execution of arbitrary code. chromium 2012-10-21 2012-10-21: 1 433551 436234 437664 437984 remote 22.0.1229.94 22.0.1229.94

Chromium is an open source web browser project.

Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers and release notes referenced below for details.

A remote attacker could entice a user to open a specially crafted web site using Chromium, possibly resulting in the execution of arbitrary code with the privileges of the process, arbitrary file write, a Denial of Service condition, Cross-Site Scripting in SSL interstitial and various Universal Cross-Site Scripting attacks.

There is no known workaround at this time.

All Chromium users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=www-client/chromium-22.0.1229.94"

CVE-2012-2859 CVE-2012-2860 CVE-2012-2865 CVE-2012-2866 CVE-2012-2867 CVE-2012-2868 CVE-2012-2869 CVE-2012-2872 CVE-2012-2874 CVE-2012-2876 CVE-2012-2877 CVE-2012-2878 CVE-2012-2879 CVE-2012-2880 CVE-2012-2881 CVE-2012-2882 CVE-2012-2883 CVE-2012-2884 CVE-2012-2885 CVE-2012-2886 CVE-2012-2887 CVE-2012-2888 CVE-2012-2889 CVE-2012-2891 CVE-2012-2892 CVE-2012-2894 CVE-2012-2896 CVE-2012-2900 CVE-2012-5108 CVE-2012-5110 CVE-2012-5111 CVE-2012-5112 CVE-2012-5376 Release Notes 21.0.1180.89 Release Notes 22.0.1229.79 Release Notes 22.0.1229.92 Release Notes 22.0.1229.94 phajdan.jr phajdan.jr