new upstream release: 24.0.1312.56
Bug #1099075 reported by
ilf
This bug affects 3 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
chromium-browser (Ubuntu) |
Fix Released
|
High
|
Chad Miller | ||
Lucid |
Fix Released
|
High
|
Chad Miller | ||
Oneiric |
Fix Released
|
High
|
Chad Miller | ||
Precise |
Fix Released
|
High
|
Chad Miller | ||
Quantal |
Fix Released
|
High
|
Chad Miller | ||
Raring |
Fix Released
|
High
|
Chad Miller |
Bug Description
And again a new stable release: 24.0.1312.52.
As always, it comes with *lots* of security fixes (http://
Please update the Ubuntu package to the newest version and keep it current, as you do with Firefox.
CVE References
- 2012-5116
- 2012-5117
- 2012-5119
- 2012-5120
- 2012-5121
- 2012-5122
- 2012-5123
- 2012-5124
- 2012-5125
- 2012-5126
- 2012-5127
- 2012-5128
- 2012-5130
- 2012-5132
- 2012-5133
- 2012-5134
- 2012-5135
- 2012-5136
- 2012-5137
- 2012-5138
- 2012-5139
- 2012-5140
- 2012-5141
- 2012-5142
- 2012-5143
- 2012-5144
- 2012-5145
- 2012-5146
- 2012-5147
- 2012-5148
- 2012-5149
- 2012-5150
- 2012-5151
- 2012-5152
- 2012-5153
- 2012-5156
- 2012-5157
- 2013-0828
- 2013-0829
- 2013-0830
- 2013-0831
- 2013-0832
- 2013-0833
- 2013-0834
- 2013-0835
- 2013-0836
- 2013-0837
- 2013-0838
- 2013-0839
- 2013-0840
- 2013-0841
- 2013-0842
- 2013-0843
information type: | Private Security → Public Security |
Changed in chromium-browser (Ubuntu Lucid): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Chad Miller (cmiller) |
Changed in chromium-browser (Ubuntu Oneiric): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Chad Miller (cmiller) |
Changed in chromium-browser (Ubuntu Precise): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Chad Miller (cmiller) |
Changed in chromium-browser (Ubuntu Quantal): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Chad Miller (cmiller) |
Changed in chromium-browser (Ubuntu Raring): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Chad Miller (cmiller) |
description: | updated |
Changed in chromium-browser (Ubuntu Raring): | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
And again: 24.0.1312.56
Security fixes:
* [$1000] [151008] High CVE-2013-0839: Use-after-free in canvas font handling. Credit to Atte Kettunen of OUSPG.
* [170532] Medium CVE-2013-0840: Missing URL validation when opening new windows.
* [169770] High CVE-2013-0841: Unchecked array index in content blocking. Credit to Google Chrome Security Team (Chris Evans).
* [166867] Medium CVE-2013-0842: Problems with NULL characters embedded in paths. Credit to Google Chrome Security Team (Jüri Aedla).
* [Mac only] [166523] High CVE-2013-0843: Crash with unsupported RTC sampling rate. Credit to Ted Nakamura of the Chromium development community.
I don't know why you edited this out of my original description:
"From a security perspective, having no Chromium package at all would be better than having outdated ones with gaping holes."