[3.4] chromium: Multiple vulnerabilities (CVE-2016-1660, CVE-2016-1661, CVE-2016-1662, CVE-2016-1663, CVE-2016-1664, CVE-2016-1665, CVE-2016-1666)
CVE-2016-1660: Out-of-bounds write in Blink.
CVE-2016-1661: Memory corruption in cross-process frames.
CVE-2016-1662: Use-after-free in extensions.
CVE-2016-1663: Use-after-free in Blink’s V8 bindings.
CVE-2016-1664: Address bar spoofing.
CVE-2016-1665: Information leak in V8.
CVE-2016-1666: Various fixes from internal audits, fuzzing and other initiatives.
Fixed In Version:
Chrome 50.0.2661.94
References:
http://googlechromereleases.blogspot.no/2016/04/stable-channel-update\_28.html
https://www.debian.org/security/2016/dsa-3564
(from redmine: issue id 5540, created on 2016-05-03, closed on 2017-01-31)
- Relations:
- parent #5539 (closed)
- Changesets:
- Revision b5122bf2 by Natanael Copa on 2016-09-15T13:43:59Z:
community/chromium: upgrade to 52.0.2743.116
fixes #5426
fixes #5540
fixes #5687
(cherry picked from commit 4321d98a3c9eed570fe04872e5d133c5d011be92)