what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Gentoo Linux Security Advisory 201603-09

Gentoo Linux Security Advisory 201603-09
Posted Mar 14, 2016
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201603-9 - Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. Versions less than 49.0.2623.87 are affected.

tags | advisory, remote, web, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2015-1270, CVE-2015-1271, CVE-2015-1272, CVE-2015-1273, CVE-2015-1274, CVE-2015-1275, CVE-2015-1276, CVE-2015-1277, CVE-2015-1278, CVE-2015-1279, CVE-2015-1280, CVE-2015-1281, CVE-2015-1282, CVE-2015-1283, CVE-2015-1284, CVE-2015-1285, CVE-2015-1286, CVE-2015-1287, CVE-2015-1288, CVE-2015-1289, CVE-2015-1291, CVE-2015-1292, CVE-2015-1293, CVE-2015-1294, CVE-2015-1295, CVE-2015-1296, CVE-2015-1297, CVE-2015-1298
SHA-256 | 5abf25c12584159c54e56734f91a78c967d2d5a4f45e1fe5e4e2b1009b5bd883
Download | Favorite | View

Gentoo Linux Security Advisory 201603-09

Change Mirror Download
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 201603-09
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                           https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal
    Title: Chromium: Multiple vulnerabilities
     Date: March 12, 2016
     Bugs: #555640, #559384, #561448, #563098, #565510, #567308,
           #567870, #568396, #572542, #574416, #575434, #576354, #576858
       ID: 201603-09

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

Multiple vulnerabilities have been found in the Chromium web browser,
the worst of which allows remote attackers to execute arbitrary code.

Background
==========

Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all users to experience the web.

Affected packages
=================

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
  1  www-client/chromium       < 49.0.2623.87         >= 49.0.2623.87

Description
===========

Multiple vulnerabilities have been discovered in the Chromium web
browser. Please review the CVE identifiers referenced below for
details.

Impact
======

A remote attacker could possibly execute arbitrary code with the
privileges of the process, cause a Denial of Service condition, obtain
sensitive information, or bypass security restrictions.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All Chromium users should upgrade to the latest version:

  # emerge --sync
  # emerge --ask --oneshot -v ">=www-client/chromium-49.0.2623.87"

References
==========

[   1 ] CVE-2015-1270
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1270
[   2 ] CVE-2015-1271
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1271
[   3 ] CVE-2015-1272
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1272
[   4 ] CVE-2015-1273
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1273
[   5 ] CVE-2015-1274
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1274
[   6 ] CVE-2015-1275
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1275
[   7 ] CVE-2015-1276
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1276
[   8 ] CVE-2015-1277
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1277
[   9 ] CVE-2015-1278
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1278
[  10 ] CVE-2015-1279
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1279
[  11 ] CVE-2015-1280
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1280
[  12 ] CVE-2015-1281
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1281
[  13 ] CVE-2015-1282
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1282
[  14 ] CVE-2015-1283
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1283
[  15 ] CVE-2015-1284
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1284
[  16 ] CVE-2015-1285
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1285
[  17 ] CVE-2015-1286
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1286
[  18 ] CVE-2015-1287
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1287
[  19 ] CVE-2015-1288
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1288
[  20 ] CVE-2015-1289
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1289
[  21 ] CVE-2015-1291
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1291
[  22 ] CVE-2015-1292
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1292
[  23 ] CVE-2015-1293
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1293
[  24 ] CVE-2015-1294
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1294
[  25 ] CVE-2015-1295
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1295
[  26 ] CVE-2015-1296
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1296
[  27 ] CVE-2015-1297
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1297
[  28 ] CVE-2015-1298
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1298
[  29 ] CVE-2015-1299
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1299
[  30 ] CVE-2015-1300
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1300
[  31 ] CVE-2015-1302
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1302
[  32 ] CVE-2015-1303
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1303
[  33 ] CVE-2015-1304
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1304
[  34 ] CVE-2015-6755
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6755
[  35 ] CVE-2015-6756
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6756
[  36 ] CVE-2015-6757
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6757
[  37 ] CVE-2015-6758
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6758
[  38 ] CVE-2015-6759
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6759
[  39 ] CVE-2015-6760
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6760
[  40 ] CVE-2015-6761
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6761
[  41 ] CVE-2015-6762
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6762
[  42 ] CVE-2015-6763
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6763
[  43 ] CVE-2015-6764
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6764
[  44 ] CVE-2015-6765
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6765
[  45 ] CVE-2015-6766
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6766
[  46 ] CVE-2015-6767
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6767
[  47 ] CVE-2015-6768
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6768
[  48 ] CVE-2015-6769
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6769
[  49 ] CVE-2015-6770
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6770
[  50 ] CVE-2015-6771
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6771
[  51 ] CVE-2015-6772
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6772
[  52 ] CVE-2015-6773
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6773
[  53 ] CVE-2015-6774
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6774
[  54 ] CVE-2015-6775
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6775
[  55 ] CVE-2015-6776
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6776
[  56 ] CVE-2015-6777
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6777
[  57 ] CVE-2015-6778
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6778
[  58 ] CVE-2015-6779
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6779
[  59 ] CVE-2015-6780
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6780
[  60 ] CVE-2015-6781
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6781
[  61 ] CVE-2015-6782
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6782
[  62 ] CVE-2015-6783
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6783
[  63 ] CVE-2015-6784
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6784
[  64 ] CVE-2015-6785
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6785
[  65 ] CVE-2015-6786
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6786
[  66 ] CVE-2015-6787
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6787
[  67 ] CVE-2015-6788
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6788
[  68 ] CVE-2015-6789
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6789
[  69 ] CVE-2015-6790
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6790
[  70 ] CVE-2015-6791
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6791
[  71 ] CVE-2015-6792
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6792
[  72 ] CVE-2015-8126
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8126
[  73 ] CVE-2016-1612
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1612
[  74 ] CVE-2016-1613
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1613
[  75 ] CVE-2016-1614
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1614
[  76 ] CVE-2016-1615
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1615
[  77 ] CVE-2016-1616
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1616
[  78 ] CVE-2016-1617
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1617
[  79 ] CVE-2016-1618
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1618
[  80 ] CVE-2016-1619
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1619
[  81 ] CVE-2016-1620
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1620
[  82 ] CVE-2016-1621
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1621
[  83 ] CVE-2016-1622
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1622
[  84 ] CVE-2016-1623
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1623
[  85 ] CVE-2016-1624
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1624
[  86 ] CVE-2016-1625
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1625
[  87 ] CVE-2016-1626
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1626
[  88 ] CVE-2016-1627
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1627
[  89 ] CVE-2016-1628
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1628
[  90 ] CVE-2016-1629
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1629
[  91 ] CVE-2016-1630
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1630
[  92 ] CVE-2016-1631
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1631
[  93 ] CVE-2016-1632
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1632
[  94 ] CVE-2016-1633
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1633
[  95 ] CVE-2016-1634
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1634
[  96 ] CVE-2016-1635
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1635
[  97 ] CVE-2016-1636
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1636
[  98 ] CVE-2016-1637
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1637
[  99 ] CVE-2016-1638
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1638
[ 100 ] CVE-2016-1639
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1639
[ 101 ] CVE-2016-1640
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1640
[ 102 ] CVE-2016-1641
        https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1641

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

 https://security.gentoo.org/glsa/201603-09

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
https://bugs.gentoo.org.

License
=======

Copyright 2016 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5
Login or Register to add favorites

File Archive:

September 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    261 Files
  • 2
    Sep 2nd
    17 Files
  • 3
    Sep 3rd
    38 Files
  • 4
    Sep 4th
    52 Files
  • 5
    Sep 5th
    23 Files
  • 6
    Sep 6th
    27 Files
  • 7
    Sep 7th
    0 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    16 Files
  • 10
    Sep 10th
    38 Files
  • 11
    Sep 11th
    21 Files
  • 12
    Sep 12th
    40 Files
  • 13
    Sep 13th
    18 Files
  • 14
    Sep 14th
    0 Files
  • 15
    Sep 15th
    0 Files
  • 16
    Sep 16th
    21 Files
  • 17
    Sep 17th
    51 Files
  • 18
    Sep 18th
    23 Files
  • 19
    Sep 19th
    48 Files
  • 20
    Sep 20th
    36 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    38 Files
  • 24
    Sep 24th
    65 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close