[3.3] chromium: Multiple vulnerabilities (CVE-2016-1660, CVE-2016-1661, CVE-2016-1662, CVE-2016-1663, CVE-2016-1664, CVE-2016-1665, CVE-2016-1666)
CVE-2016-1660: Out-of-bounds write in Blink.
CVE-2016-1661: Memory corruption in cross-process frames.
CVE-2016-1662: Use-after-free in extensions.
CVE-2016-1663: Use-after-free in Blink’s V8 bindings.
CVE-2016-1664: Address bar spoofing.
CVE-2016-1665: Information leak in V8.
CVE-2016-1666: Various fixes from internal audits, fuzzing and other initiatives.
Fixed In Version:
Chrome 50.0.2661.94
References:
http://googlechromereleases.blogspot.no/2016/04/stable-channel-update\_28.html
https://www.debian.org/security/2016/dsa-3564
(from redmine: issue id 5541, created on 2016-05-03, closed on 2017-01-24)
- Relations:
- parent #5539 (closed)