FreeBSD : chromium -- multiple vulnerabilities (e6161b65-1187-11e2-afe3-00262d5ed8ee)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Google Chrome Releases reports :

[138208] High CVE-2012-2900: Crash in Skia text rendering. Credit to
Atte Kettunen of OUSPG.

[147499] Critical CVE-2012-5108: Race condition in audio device
handling. Credit to Atte Kettunen of OUSPG.

[148692] Medium CVE-2012-5109: OOB read in ICU regex. Credit to Arthur
Gerkis.

[151449] Medium CVE-2012-5110: Out-of-bounds read in compositor.
Credit to Google Chrome Security Team (Inferno).

[151895] Low CVE-2012-5111: Plug-in crash monitoring was missing for
Pepper plug-ins. Credit to Google Chrome Security Team (Chris Evans).

See also :

http://www.nessus.org/u?bdc75d6a
http://www.nessus.org/u?922b85fc

Solution :

Update the affected package.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 62457 ()

Bugtraq ID:

CVE ID: CVE-2012-2900
CVE-2012-5108
CVE-2012-5109
CVE-2012-5110
CVE-2012-5111

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now