Test ID:	1.3.6.1.4.1.25623.1.1.10.2013.0306
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2013-0306)
Summary:	The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2013-0306 advisory.
Description:	Summary: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2013-0306 advisory. Vulnerability Insight: This updates chromium-browser to the latest stable version, fixing multiple security vulnerabilities. Security fixes: CVE-2013-2906: Races in Web Audio CVE-2013-2907: Out of bounds read in Window.prototype object CVE-2013-2908: Address bar spoofing related to the '204 No Content' status code CVE-2013-2909: Use after free in inline-block rendering CVE-2013-2910: Use-after-free in Web Audio CVE-2013-2911: Use-after-free in XSLT CVE-2013-2912: Use-after-free in PPAPI CVE-2013-2913: Use-after-free in XML document parsing CVE-2013-2914: Use after free in the Windows color chooser dialog CVE-2013-2915: Address bar spoofing via a malformed scheme CVE-2013-2916: Address bar spoofing related to the '204 No Content' status code CVE-2013-2917: Out of bounds read in Web Audio CVE-2013-2918: Use-after-free in DOM CVE-2013-2919: Memory corruption in V8 CVE-2013-2920: Out of bounds read in URL parsing CVE-2013-2921: Use-after-free in resource loader CVE-2013-2922: Use-after-free in template element CVE-2013-2923: Various fixes from internal audits, fuzzing and other initiatives CVE-2013-2924: Use-after-free in ICU. Upstream bug Affected Software/OS: 'chromium-browser-stable' package(s) on Mageia 2, Mageia 3. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-2906 Debian Security Information: DSA-2785 (Google Search) http://www.debian.org/security/2013/dsa-2785 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19013 SuSE Security Announcement: openSUSE-SU-2013:1556 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00002.html SuSE Security Announcement: openSUSE-SU-2013:1861 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html SuSE Security Announcement: openSUSE-SU-2014:0065 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html Common Vulnerability Exposure (CVE) ID: CVE-2013-2907 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18695 Common Vulnerability Exposure (CVE) ID: CVE-2013-2908 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18782 Common Vulnerability Exposure (CVE) ID: CVE-2013-2909 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19012 Common Vulnerability Exposure (CVE) ID: CVE-2013-2910 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18812 Common Vulnerability Exposure (CVE) ID: CVE-2013-2911 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18687 Common Vulnerability Exposure (CVE) ID: CVE-2013-2912 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18962 Common Vulnerability Exposure (CVE) ID: CVE-2013-2913 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18843 Common Vulnerability Exposure (CVE) ID: CVE-2013-2914 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18081 Common Vulnerability Exposure (CVE) ID: CVE-2013-2915 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18319 Common Vulnerability Exposure (CVE) ID: CVE-2013-2916 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18968 Common Vulnerability Exposure (CVE) ID: CVE-2013-2917 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18820 Common Vulnerability Exposure (CVE) ID: CVE-2013-2918 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18839 Common Vulnerability Exposure (CVE) ID: CVE-2013-2919 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18840 Common Vulnerability Exposure (CVE) ID: CVE-2013-2920 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18451 Common Vulnerability Exposure (CVE) ID: CVE-2013-2921 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18389 Common Vulnerability Exposure (CVE) ID: CVE-2013-2922 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18358 Common Vulnerability Exposure (CVE) ID: CVE-2013-2923 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18103 Common Vulnerability Exposure (CVE) ID: CVE-2013-2924 BugTraq ID: 64758 http://www.securityfocus.com/bid/64758 Debian Security Information: DSA-2786 (Google Search) http://www.debian.org/security/2013/dsa-2786 http://jvn.jp/en/jp/JVN85336306/index.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19017
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.