This bug was fixed in the package chromium-browser -
11.0.696.65~r84435-0ubuntu0.11.04.1
---------------
chromium-browser (11.0.696.65~r84435-0ubuntu0.11.04.1) natty-security;
urgency=low
[ Fabien Tassin <f...@ubuntu.com> ]
* New Minor upstream release from the Stable Channel (LP: #778822)
This release fixes the following security issues:
+ WebKit issues:
- [67923] High, CVE-2011-1793: stale pointer in SVG image handling
(credit: Mitz)
- [78327] High, CVE-2011-1794: integer overflow in SVG filters (credit:
Inferno)
- [78948] High, CVE-2011-1795: integer underflow in forms handling
(credit: Cris Neckar)
- [79055] High, CVE-2011-1796: use-after-free in frame handling (credit:
Inferno)
- [79075] High, CVE-2011-1797: stale pointer in table captioning (credit:
wushi)
- [79595] High, CVE-2011-1798: bad cast in SVG text handling (credit:
Inferno)
* Pass --delete_unversioned_trees to gclient and drop the git.chromium.org
workaround.
- update debian/rules
[ Micah Gersten <mic...@ubuntu.com> ]
* Switch arch: any to arch: i386 amd64 so that we don't have to wait for armel
- update debian/control
-- Micah Gersten <mic...@ubuntu.com> Sun, 08 May 2011 02:57:29 +0200
** Changed in: chromium-browser (Ubuntu Natty)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/778822
Title:
11.0.696.57 -> 11.0.696.65
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
