openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0374-1)

Critical Nessus Plugin ID 74570

New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.

VPR Score: 5.9

Synopsis

The remote openSUSE host is missing a security update.

Description

Changes in chromium :

- Update to 19.0.1066

- Fixed Chrome install/update resets Google search preferences (Issue: 105390)

- Don't trigger accelerated compositing on 3D CSS when using swiftshader (Issue: 116401)

- Fixed a GPU crash (Issue: 116096)

- More fixes for Back button frequently hangs (Issue:
93427)

- Bastion now works (Issue: 116285)

- Fixed Composited layer sorting irregularity with accelerated canvas (Issue: 102943)

- Fixed Composited layer sorting irregularity with accelerated canvas (Issue: 102943)

- Fixed Google Feedback causes render process to use too much memory (Issue: 114489)

- Fixed after upgrade, some pages are rendered as blank (Issue: 109888)

- Fixed Pasting text into a single-line text field shouldn't keep literal newlines (Issue: 106551)

- Security Fixes :

- Critical CVE-2011-3047: Errant plug-in load and GPU process memory corruption

- Critical CVE-2011-3046: UXSS and bad history navigation.

- Update to 19.0.1060

- Fixed NTP signed in state is missing (Issue: 112676)

- Fixed gmail seems to redraw itself (all white) occasionally (Issue: 111263)

- Focus 'OK' button on JavaScript dialogs (Issue: 111015)

- Fixed Back button frequently hangs (Issue: 93427)

- Increase the buffer size to fix muted playback rate (Issue: 108239)

- Fixed Empty span with line-height renders with non-zero height (Issue: 109811)

- Marked the Certum Trusted Network CA as an issuer of extended-validation (EV) certificates.

- Fixed importing of bookmarks, history, etc. from Firefox 10+.

- Fixed issues - 114001, 110785, 114168, 114598, 111663, 113636, 112676

- Fixed several crashes (Issues: 111376, 108688, 114391)

- Fixed Firefox browser in Import Bookmarks and Settings drop-down (Issue: 114476)

- Sync: Sessions aren't associating pre-existing tabs (Issue: 113319)

- Fixed All 'Extensions' make an entry under the 'NTP Apps' page (Issue: 113672)

- Security Fixes (bnc#750407) :

- High CVE-2011-3031: Use-after-free in v8 element wrapper.

- High CVE-2011-3032: Use-after-free in SVG value handling.

- High CVE-2011-3033: Buffer overflow in the Skia drawing library.

- High CVE-2011-3034: Use-after-free in SVG document handling.

- High CVE-2011-3035: Use-after-free in SVG use handling.

- High CVE-2011-3036: Bad cast in line box handling.

- High CVE-2011-3037: Bad casts in anonymous block splitting.

- High CVE-2011-3038: Use-after-free in multi-column handling.

- High CVE-2011-3039: Use-after-free in quote handling.

- High CVE-2011-3040: Out-of-bounds read in text handling.

- High CVE-2011-3041: Use-after-free in class attribute handling.

- High CVE-2011-3042: Use-after-free in table section handling.

- High CVE-2011-3043: Use-after-free in flexbox with floats.

- High CVE-2011-3044: Use-after-free with SVG animation elements.

Changes in v8 :

- Update to 3.9.13.0

- Add code kind check before preparing for OSR. (issue 1900, 115073)

- Pass zone explicitly to zone-allocation on x64 and ARM.
(issue 1802)

- Port string construct stub to x64. (issue 849)

- Performance and stability improvements on all platforms.

Solution

Update the affected chromium / v8 packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=750407

https://bugzilla.novell.com/show_bug.cgi?id=751466

https://bugzilla.novell.com/show_bug.cgi?id=751738

https://lists.opensuse.org/opensuse-updates/2012-03/msg00029.html

Plugin Details

Severity: Critical

ID: 74570

File Name: openSUSE-2012-165.nasl

Version: 1.3

Type: local

Agent: unix

Published: 2014/06/13

Updated: 2020/06/04

Dependencies: 12634

Risk Information

Risk Factor: Critical

VPR Score: 5.9

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:chromium, p-cpe:/a:novell:opensuse:chromium-debuginfo, p-cpe:/a:novell:opensuse:chromium-debugsource, p-cpe:/a:novell:opensuse:chromium-desktop-gnome, p-cpe:/a:novell:opensuse:chromium-desktop-kde, p-cpe:/a:novell:opensuse:chromium-suid-helper, p-cpe:/a:novell:opensuse:chromium-suid-helper-debuginfo, p-cpe:/a:novell:opensuse:libv8-3, p-cpe:/a:novell:opensuse:libv8-3-debuginfo, p-cpe:/a:novell:opensuse:v8-debugsource, p-cpe:/a:novell:opensuse:v8-devel, p-cpe:/a:novell:opensuse:v8-private-headers-devel, cpe:/o:novell:opensuse:12.1

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 2012/03/14

Reference Information

CVE: CVE-2011-3031, CVE-2011-3032, CVE-2011-3033, CVE-2011-3034, CVE-2011-3035, CVE-2011-3036, CVE-2011-3037, CVE-2011-3038, CVE-2011-3039, CVE-2011-3040, CVE-2011-3041, CVE-2011-3042, CVE-2011-3043, CVE-2011-3044, CVE-2011-3046, CVE-2011-3047