DSA-2732-1 chromium-browser -- severalID: oval:org.secpod.oval:def:601081 | Date: (C)2013-09-25 (M)2024-05-22 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in the Chromium web browser. CVE-2013-2881 Karthik Bhargavan discovered a way to bypass the Same Origin Policy in frame handling. CVE-2013-2882 Cloudfuzzer discovered a type confusion issue in the V8 javascript library. CVE-2013-2883 Cloudfuzzer discovered a use-after-free issue in MutationObserver. CVE-2013-2884 Ivan Fratric of the Google Security Team discovered a use-after-free issue in the DOM implementation. CVE-2013-2885 Ivan Fratric of the Google Security Team discovered a use-after-free issue in input handling. CVE-2013-2886 The chrome 28 development team found various issues from internal fuzzing, audits, and other studies.