[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
This bug was fixed in the package chromium-browser - 8.0.552.237~r70801-0ubuntu0.10.04.1 --- chromium-browser (8.0.552.237~r70801-0ubuntu0.10.04.1) lucid-security; urgency=high * New upstream release from the Stable Channel (LP: #702542) This release fixes the following security issues: - [58053] Medium, Browser crash in extensions notification handling. Credit to Eric Roman of the Chromium development community. - [65764] High, Bad pointer handling in node iteration. Credit to Sergey Glazunov. - [66560] High, Stale pointer with CSS + canvas. Credit to Sergey Glazunov. - [66748] High, Stale pointer with CSS + cursors. Credit to Jan Tošovský. - [67303] High, Bad memory access with mismatched video frame sizes. Credit to Aki Helin of OUSPG; plus independent discovery by Google Chrome Security Team (SkyLined) and David Warren of CERT. - [67363] High, Stale pointer with SVG use element. Credited anonymously; plus indepdent discovery by miaubiz. - [67393] Medium, Uninitialized pointer in the browser triggered by rogue extension. Credit to kuzzcc. - [68115] High, Vorbis decoder buffer overflows. Credit to David Warren of CERT. - [68178] High, Bad cast in anchor handling. Credit to Sergey Glazunov. - [68181] High, Bad cast in video handling. Credit to Sergey Glazunov. - [68439] High, Stale rendering node after DOM node removal. Credit to Martin Barbella; plus independent discovery by Google Chrome Security Team (SkyLined). - [68666] Critical, Stale pointer in speech handling. Credit to Sergey Glazunov. * Add the chrome/app/policy/policy_templates.grd template to the list of templates translated in Launchpad - update debian/rules * Add Basque and Galician to the list of supported langs for the lang-packs (translations from Launchpad/Rosetta) - update debian/rules -- Fabien TassinThu, 13 Jan 2011 07:31:05 +0100 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
This bug was fixed in the package chromium-browser - 8.0.552.237~r70801-0ubuntu0.10.10.1 --- chromium-browser (8.0.552.237~r70801-0ubuntu0.10.10.1) maverick-security; urgency=high * New upstream release from the Stable Channel (LP: #702542) This release fixes the following security issues: - [58053] Medium, Browser crash in extensions notification handling. Credit to Eric Roman of the Chromium development community. - [65764] High, Bad pointer handling in node iteration. Credit to Sergey Glazunov. - [66560] High, Stale pointer with CSS + canvas. Credit to Sergey Glazunov. - [66748] High, Stale pointer with CSS + cursors. Credit to Jan Tošovský. - [67303] High, Bad memory access with mismatched video frame sizes. Credit to Aki Helin of OUSPG; plus independent discovery by Google Chrome Security Team (SkyLined) and David Warren of CERT. - [67363] High, Stale pointer with SVG use element. Credited anonymously; plus indepdent discovery by miaubiz. - [67393] Medium, Uninitialized pointer in the browser triggered by rogue extension. Credit to kuzzcc. - [68115] High, Vorbis decoder buffer overflows. Credit to David Warren of CERT. - [68178] High, Bad cast in anchor handling. Credit to Sergey Glazunov. - [68181] High, Bad cast in video handling. Credit to Sergey Glazunov. - [68439] High, Stale rendering node after DOM node removal. Credit to Martin Barbella; plus independent discovery by Google Chrome Security Team (SkyLined). - [68666] Critical, Stale pointer in speech handling. Credit to Sergey Glazunov. * Add the chrome/app/policy/policy_templates.grd template to the list of templates translated in Launchpad - update debian/rules * Add Basque and Galician to the list of supported langs for the lang-packs (translations from Launchpad/Rosetta) - update debian/rules -- Fabien TassinThu, 13 Jan 2011 07:31:05 +0100 ** Changed in: chromium-browser (Ubuntu Maverick) Status: Fix Committed => Fix Released ** Changed in: chromium-browser (Ubuntu Lucid) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
** Tags added: verification-done ** Tags removed: verification-needed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
Tested lucid and maverick on amd64 (and maverick on i386), and upgrade went fine and it passes QRT's test-browser.py. ** Tags added: verification-needed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
To ubuntu-sru: if this passes the verification process, please also pocket copy to security. Thanks! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
Pocket copied chromium-browser to proposed for maverick and lucid. Please test and give feedback here. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Thank you in advance! ** Tags removed: security-verification ** Changed in: chromium-browser (Ubuntu Lucid) Status: In Progress => Fix Committed ** Changed in: chromium-browser (Ubuntu Maverick) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
Tested on Lucid i386 with QRT, passed verification I did have a problem with a few openoffice documents, but I believe it to be a local issue -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
Lucid and maverick uploaded to the security proposed PPA. ** Tags added: security-verification ** This bug has been flagged as a security vulnerability -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 702542] Re: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update
This bug was fixed in the package chromium-browser - 8.0.552.237~r70801-0ubuntu1 --- chromium-browser (8.0.552.237~r70801-0ubuntu1) natty; urgency=high * New upstream release from the Stable Channel (LP: #702542) This release fixes the following security issues: - [58053] Medium, Browser crash in extensions notification handling. Credit to Eric Roman of the Chromium development community. - [65764] High, Bad pointer handling in node iteration. Credit to Sergey Glazunov. - [66560] High, Stale pointer with CSS + canvas. Credit to Sergey Glazunov. - [66748] High, Stale pointer with CSS + cursors. Credit to Jan Tošovský. - [67303] High, Bad memory access with mismatched video frame sizes. Credit to Aki Helin of OUSPG; plus independent discovery by Google Chrome Security Team (SkyLined) and David Warren of CERT. - [67363] High, Stale pointer with SVG use element. Credited anonymously; plus indepdent discovery by miaubiz. - [67393] Medium, Uninitialized pointer in the browser triggered by rogue extension. Credit to kuzzcc. - [68115] High, Vorbis decoder buffer overflows. Credit to David Warren of CERT. - [68178] High, Bad cast in anchor handling. Credit to Sergey Glazunov. - [68181] High, Bad cast in video handling. Credit to Sergey Glazunov. - [68439] High, Stale rendering node after DOM node removal. Credit to Martin Barbella; plus independent discovery by Google Chrome Security Team (SkyLined). - [68666] Critical, Stale pointer in speech handling. Credit to Sergey Glazunov. * Add the chrome/app/policy/policy_templates.grd template to the list of templates translated in Launchpad - update debian/rules * Add Basque and Galician to the list of supported langs for the lang-packs (translations from Launchpad/Rosetta) - update debian/rules -- Fabien TassinThu, 13 Jan 2011 07:31:05 +0100 ** Changed in: chromium-browser (Ubuntu Natty) Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/702542 Title: 8.0.552.224~r68599 -> 8.0.552.237~r70801 security update -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs