Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2013.0306
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2013-0306)
Zusammenfassung:	The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2013-0306 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2013-0306 advisory. Vulnerability Insight: This updates chromium-browser to the latest stable version, fixing multiple security vulnerabilities. Security fixes: CVE-2013-2906: Races in Web Audio CVE-2013-2907: Out of bounds read in Window.prototype object CVE-2013-2908: Address bar spoofing related to the '204 No Content' status code CVE-2013-2909: Use after free in inline-block rendering CVE-2013-2910: Use-after-free in Web Audio CVE-2013-2911: Use-after-free in XSLT CVE-2013-2912: Use-after-free in PPAPI CVE-2013-2913: Use-after-free in XML document parsing CVE-2013-2914: Use after free in the Windows color chooser dialog CVE-2013-2915: Address bar spoofing via a malformed scheme CVE-2013-2916: Address bar spoofing related to the '204 No Content' status code CVE-2013-2917: Out of bounds read in Web Audio CVE-2013-2918: Use-after-free in DOM CVE-2013-2919: Memory corruption in V8 CVE-2013-2920: Out of bounds read in URL parsing CVE-2013-2921: Use-after-free in resource loader CVE-2013-2922: Use-after-free in template element CVE-2013-2923: Various fixes from internal audits, fuzzing and other initiatives CVE-2013-2924: Use-after-free in ICU. Upstream bug Affected Software/OS: 'chromium-browser-stable' package(s) on Mageia 2, Mageia 3. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2013-2906 Debian Security Information: DSA-2785 (Google Search) http://www.debian.org/security/2013/dsa-2785 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19013 SuSE Security Announcement: openSUSE-SU-2013:1556 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00002.html SuSE Security Announcement: openSUSE-SU-2013:1861 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html SuSE Security Announcement: openSUSE-SU-2014:0065 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html Common Vulnerability Exposure (CVE) ID: CVE-2013-2907 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18695 Common Vulnerability Exposure (CVE) ID: CVE-2013-2908 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18782 Common Vulnerability Exposure (CVE) ID: CVE-2013-2909 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19012 Common Vulnerability Exposure (CVE) ID: CVE-2013-2910 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18812 Common Vulnerability Exposure (CVE) ID: CVE-2013-2911 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18687 Common Vulnerability Exposure (CVE) ID: CVE-2013-2912 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18962 Common Vulnerability Exposure (CVE) ID: CVE-2013-2913 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18843 Common Vulnerability Exposure (CVE) ID: CVE-2013-2914 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18081 Common Vulnerability Exposure (CVE) ID: CVE-2013-2915 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18319 Common Vulnerability Exposure (CVE) ID: CVE-2013-2916 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18968 Common Vulnerability Exposure (CVE) ID: CVE-2013-2917 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18820 Common Vulnerability Exposure (CVE) ID: CVE-2013-2918 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18839 Common Vulnerability Exposure (CVE) ID: CVE-2013-2919 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18840 Common Vulnerability Exposure (CVE) ID: CVE-2013-2920 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18451 Common Vulnerability Exposure (CVE) ID: CVE-2013-2921 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18389 Common Vulnerability Exposure (CVE) ID: CVE-2013-2922 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18358 Common Vulnerability Exposure (CVE) ID: CVE-2013-2923 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18103 Common Vulnerability Exposure (CVE) ID: CVE-2013-2924 BugTraq ID: 64758 http://www.securityfocus.com/bid/64758 Debian Security Information: DSA-2786 (Google Search) http://www.debian.org/security/2013/dsa-2786 http://jvn.jp/en/jp/JVN85336306/index.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19017
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.