FreeBSD : chromium -- multiple vulnerabilities (68ac6266-25c3-11e1-b63a-00262d5ed8ee)
High Nessus Plugin ID 57292
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionGoogle Chrome Releases reports :
 Medium CVE-2011-3903: Out-of-bounds read in regex matching.
Credit to David Holloway of the Chromium development community.
 Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google Chrome Security Team (Inferno).  Medium CVE-2011-3906:
Out-of-bounds read in PDF parser. Credit to Aki Helin of OUSPG.
 High CVE-2011-3907: URL bar spoofing with view-source. Credit to Mitja Kolsek of ACROS Security.  Low CVE-2011-3908:
Out-of-bounds read in SVG parsing. Credit to Aki Helin of OUSPG.
 Medium CVE-2011-3909: [64-bit only] Memory corruption in CSS property array. Credit to Google Chrome Security Team (scarybeasts) and Chu.  Medium CVE-2011-3910: Out-of-bounds read in YUV video frame handling. Credit to Google Chrome Security Team (Cris Neckar).  Medium CVE-2011-3911: Out-of-bounds read in PDF.
Credit to Google Chrome Security Team (scarybeasts) and Robert Swiecki of the Google Security Team.  High CVE-2011-3912:
Use-after-free in SVG filters. Credit to Arthur Gerkis.  High CVE-2011-3913: Use-after-free in Range handling. Credit to Arthur Gerkis.  High CVE-2011-3914: Out-of-bounds write in v8 i18n handling. Credit to Slawomir Blazek.  High CVE-2011-3915:
Buffer overflow in PDF font handling. Credit to Atte Kettunen of OUSPG.  Medium CVE-2011-3916: Out-of-bounds reads in PDF cross references. Credit to Atte Kettunen of OUSPG.  Medium CVE-2011-3917: Stack-buffer-overflow in FileWatcher. Credit to Google Chrome Security Team (Marty Barbella).  High CVE-2011-3904:
Use-after-free in bidi handling. Credit to Google Chrome Security Team (Inferno) and miaubiz.
SolutionUpdate the affected package.