FreeBSD : chromium -- multiple vulnerabilities (51f84e28-444e-11e2-8306-00262d5ed8ee)

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Google Chrome Releases reports :

[158204] High CVE-2012-5139: Use-after-free with visibility events.
Credit to Chamal de Silva.

[159429] High CVE-2012-5140: Use-after-free in URL loader. Credit to
Chamal de Silva.

[160456] Medium CVE-2012-5141: Limit Chromoting client plug-in
instantiation. Credit to Google Chrome Security Team (Juri Aedla).

[160803] Critical CVE-2012-5142: Crash in history navigation. Credit
to Michal Zalewski of Google Security Team.

[160926] Medium CVE-2012-5143: Integer overflow in PPAPI image
buffers. Credit to Google Chrome Security Team (Cris Neckar).

[161639] High CVE-2012-5144: Stack corruption in AAC decoding. Credit
to pawlkt.

See also :

http://www.nessus.org/u?bdc75d6a
http://www.nessus.org/u?72d67163

Solution :

Update the affected package.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 63256 ()

Bugtraq ID:

CVE ID: CVE-2012-5139
CVE-2012-5140
CVE-2012-5141
CVE-2012-5142
CVE-2012-5143
CVE-2012-5144

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now