Bug#607738: unblock: chromium-browser/6.0.472.63~r59945-4
Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: freeze-exception
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Please unblock package chromium-browser
chromium-browser (6.0.472.63~r59945-4) unstable; urgency=high
* Backported security patches from stable:
- [64-bit Linux only] High Bad validation for message deserialization on
64-bit builds. Credit to Lei Zhang of the Chromium development community.
- Low Browser crash with NULL pointer in web worker handling. Credit to
Nathan Weizenbaum of Google.
- Medium Out-of-bounds read in CSS parsing. Credit to Chris Rohlf.
- High Stale pointers in cursor handling. Credit to Sławomir Błażek and
Sergey Glazunov.
-- Giuseppe Iuculano <iuculano@debian.org> Sat, 18 Dec 2010 17:39:19 +0100
chromium-browser (6.0.472.63~r59945-3) unstable; urgency=high
* Backported security patches from stable:
- Medium Cross-origin video theft with <canvas>. Credit to Nirankush
Panchbhai and Microsoft Vulnerability Research (MSVR).
- High Use after free in history handling. Credit to Stefan Troger.
- Medium Make sure the “dangerous file types” list is uptodate with the
Windows platforms. Credit to Billy Rios of the Google Security Team.
- High Crash due to bad indexing with malformed video. Credit to miaubiz.
- High Use after free with SVG animations. Credit to Sławomir Błażek.
- Medium Use after free in mouse dragging event handling. Credit to kuzzcc.
-- Giuseppe Iuculano <iuculano@debian.org> Tue, 07 Dec 2010 12:53:25 +0100
unblock chromium-browser/6.0.472.63~r59945-4
- -- System Information:
Debian Release: squeeze/sid
APT prefers testing-proposed-updates
APT policy: (990, 'testing-proposed-updates'), (990, 'testing'), (990, 'stable'), (500, 'proposed-updates'), (500, 'unstable'), (101, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAk0QzQkACgkQNxpp46476aq+PACgghzg2sMKUIwN6aVnT3g8L0x5
PnMAn3QWFQBrY6rB9RM0X7z1dJt4nw/f
=ktIT
-----END PGP SIGNATURE-----
Reply to: