FreeBSD : chromium -- multiple vulnerabilities (1449af37-9eba-11e1-b9c1-00262d5ed8ee)
Critical Nessus Plugin ID 59103
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionGoogle Chrome Releases reports :
 Low CVE-2011-3083: Browser crash with video + FTP. Credit to Aki Helin of OUSPG.
 Low CVE-2011-3084: Load links from internal pages in their own process. Credit to Brett Wilson of the Chromium development community.
 Medium CVE-2011-3085: UI corruption with long autofilled values. Credit to 'psaldorn'.
 High CVE-2011-3086: Use-after-free with style element. Credit to Arthur Gerkis.
 Low CVE-2011-3087: Incorrect window navigation. Credit to Charlie Reis of the Chromium development community.
 Medium CVE-2011-3088: Out-of-bounds read in hairline drawing.
Credit to Aki Helin of OUSPG.
 High CVE-2011-3089: Use-after-free in table handling. Credit to miaubiz.
 Medium CVE-2011-3090: Race condition with workers. Credit to Arthur Gerkis.
 High CVE-2011-3091: Use-after-free with indexed DB. Credit to Google Chrome Security Team (Inferno).
 High CVE-2011-3092: Invalid write in v8 regex. Credit to Christian Holler.
 Medium CVE-2011-3093: Out-of-bounds read in glyph handling.
Credit to miaubiz.
 Medium CVE-2011-3094: Out-of-bounds read in Tibetan handling.
Credit to miaubiz.
 High CVE-2011-3095: Out-of-bounds write in OGG container.
Credit to Hannu Heikkinen.
[Linux only]  Low CVE-2011-3096: Use-after-free in GTK omnibox handling. Credit to Arthur Gerkis.
  High CVE-2011-3097: Out-of-bounds write in sampled functions with PDF. Credit to Kostya Serebryany of Google and Evgeniy Stepanov of Google.
 High CVE-2011-3099: Use-after-free in PDF with corrupt font encoding name. Credit to Mateusz Jurczyk of Google Security Team and Gynvael Coldwind of Google Security Team.
 Medium CVE-2011-3100: Out-of-bounds read drawing dash paths.
Credit to Google Chrome Security Team (Inferno).
SolutionUpdate the affected package.