Test ID:	1.3.6.1.4.1.25623.1.0.72609
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: chromium
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory.
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: chromium CVE-2012-5127 Integer overflow in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted WebP image. CVE-2012-5120 Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, on 64-bit Linux platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to an array. CVE-2012-5116 Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of SVG filters. CVE-2012-5118 Google Chrome before 23.0.1271.64 on Mac OS X does not properly validate an integer value during the handling of GPU command buffers, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. CVE-2012-5121 Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to video layout. CVE-2012-5117 Google Chrome before 23.0.1271.64 does not properly restrict the loading of an SVG subresource in the context of an IMG element, which has unspecified impact and remote attack vectors. CVE-2012-5119 Race condition in Pepper, as used in Google Chrome before 23.0.1271.64, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to buffers. Text truncated. Please see the references for more information. This VT has been deprecated and is therefore no longer functional. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-5127 BugTraq ID: 56413 http://www.securityfocus.com/bid/56413 http://osvdb.org/87079 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15943 XForce ISS Database: chrome-cve20125127-code-exec(79862) https://exchange.xforce.ibmcloud.com/vulnerabilities/79862 Common Vulnerability Exposure (CVE) ID: CVE-2012-5120 http://osvdb.org/87085 XForce ISS Database: chrome-cve20125120-code-exec(79867) https://exchange.xforce.ibmcloud.com/vulnerabilities/79867 Common Vulnerability Exposure (CVE) ID: CVE-2012-5116 http://osvdb.org/87075 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14994 XForce ISS Database: chrome-cve20125116-code-exec(79863) https://exchange.xforce.ibmcloud.com/vulnerabilities/79863 Common Vulnerability Exposure (CVE) ID: CVE-2012-5118 http://osvdb.org/87074 XForce ISS Database: chrome-cve20125118-code-exec(79865) https://exchange.xforce.ibmcloud.com/vulnerabilities/79865 Common Vulnerability Exposure (CVE) ID: CVE-2012-5121 http://osvdb.org/87073 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15957 XForce ISS Database: chrome-cve20125121-code-exec(79868) https://exchange.xforce.ibmcloud.com/vulnerabilities/79868 Common Vulnerability Exposure (CVE) ID: CVE-2012-5117 http://osvdb.org/87076 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15912 Common Vulnerability Exposure (CVE) ID: CVE-2012-5119 http://osvdb.org/87072 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15977 XForce ISS Database: chrome-cve20125119-code-exec(79866) https://exchange.xforce.ibmcloud.com/vulnerabilities/79866 Common Vulnerability Exposure (CVE) ID: CVE-2012-5122 http://osvdb.org/87071 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15695 XForce ISS Database: chrome-cve20125122-code-exec(79869) https://exchange.xforce.ibmcloud.com/vulnerabilities/79869 Common Vulnerability Exposure (CVE) ID: CVE-2012-5123 http://osvdb.org/87077 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15631 XForce ISS Database: chrome-cve20125123-code-exec(79870) https://exchange.xforce.ibmcloud.com/vulnerabilities/79870 Common Vulnerability Exposure (CVE) ID: CVE-2012-5124 http://osvdb.org/87078 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15660 XForce ISS Database: chrome-cve20125124-code-exec(79871) https://exchange.xforce.ibmcloud.com/vulnerabilities/79871 Common Vulnerability Exposure (CVE) ID: CVE-2012-5125 http://osvdb.org/87083 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15341 XForce ISS Database: chrome-cve20125125-code-exec(79872) https://exchange.xforce.ibmcloud.com/vulnerabilities/79872 Common Vulnerability Exposure (CVE) ID: CVE-2012-5126 http://osvdb.org/87082 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15891 XForce ISS Database: chrome-cve20125126-code-exec(79873) https://exchange.xforce.ibmcloud.com/vulnerabilities/79873 Common Vulnerability Exposure (CVE) ID: CVE-2012-5128 http://osvdb.org/87081 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15221
Copyright	Copyright (C) 2012 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.