[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
This bug was fixed in the package chromium-browser - 38.0.2125.111-0ubuntu0.14.04.1.1061 --- chromium-browser (38.0.2125.111-0ubuntu0.14.04.1.1061) trusty-security; urgency=medium * Upstream release 38.0.2125.111. * Upstream release 38.0.2125.104. * Upstream release 38.0.2125.101: (LP: #1310163) - CVE-2014-3188: A special thanks to Jüri Aedla for a combination of V8 and IPC bugs that can lead to remote code execution outside of the sandbox. - CVE-2014-3189: Out-of-bounds read in PDFium. - CVE-2014-3190: Use-after-free in Events. - CVE-2014-3191: Use-after-free in Rendering. - CVE-2014-3192: Use-after-free in DOM. - CVE-2014-3193: Type confusion in Session Management. - CVE-2014-3194: Use-after-free in Web Workers. - CVE-2014-3195: Information Leak in V8. - CVE-2014-3196: Permissions bypass in Windows Sandbox. - CVE-2014-3197: Information Leak in XSS Auditor. - CVE-2014-3198: Out-of-bounds read in PDFium. - CVE-2014-3199: Release Assert in V8 bindings. - CVE-2014-3200: Various fixes from internal audits, fuzzing and other initiatives (Chrome 38). * debian/rules: Prefer GCC 4.8 when compiling. 4.9 remains buggy. * Make the verification step in clean make more compare-able output. * debian/patches/configuration-directory.patch: Account for new location of policies directory in /etc . Change back. (LP: #1373802) * debian/patches/lp-translations-paths: Map old third_party filenames to new name after processor compiles. * debian/rules: Fix patch-translations rule, workflow. * debian/patches/macro-templates-not-match: Anonymous struct isn't sizable. * debian/chromium-browser.sh.in: Fix broken logic of CHROMIUM_USER_FLAGS, which has never worked. (LP: #1381644) * debian/patches/disable-sse: Disable more SSE #includes. * debian/rules: Omit unnecessary files from packaging. * debian/chromium-browser.sh.in: Fix variable name bug and suggest ~/.chromium-browser.init file over hamfisted CHROMIUM_USER_FLAGS. * debian/patches/5-desktop-integration-settings.patch: Adapt to new settings APIs. chromium-browser (37.0.2062.120-0ubuntu1) utopic; urgency=low * Upstream release 37.0.2062.120: - CVE-2014-3178: Use-after-free in rendering. Credit to miaubiz. - CVE-2014-3179: Various fixes from internal audits, fuzzing and other initiatives. * debian/rules: Simplify and rearrange. * debian/rules, debian/known_gyp_flags: Keep better track of known GYP flags, so we can fail when something changes unexpectedly. * debian/rules: Fix up patch-translations rule. chromium-browser (37.0.2062.94-0ubuntu1) utopic; urgency=low * Upstream release 37.0.2062.94. - CVE-2014-3165: Use-after-free in Blink websockets. - CVE-2014-3176, CVE-2014-3177: A combination of bugs in V8, IPC, sync, and extensions that can lead to remote code execution outside of the sandbox. - CVE-2014-3168: Use-after-free in SVG. - CVE-2014-3169: Use-after-free in DOM. - CVE-2014-3170: Extension permission dialog spoofing. - CVE-2014-3171: Use-after-free in bindings. - CVE-2014-3172: Issue related to extension debugging. - CVE-2014-3173: Uninitialized memory read in WebGL. - CVE-2014-3174: Uninitialized memory read in Web Audio. - CVE-2014-3175: Various fixes from internal audits, fuzzing and other initiatives. - CVE-2014-3176, CVE-2014-3177: Interaction of extensions, IPC, the sync API, and Google V8 to execute arbitrary code. * Fix a shell bug in the binary-wrapper that prevented USER flags from working properly. * debian/control: Suggests chromiumflashplugin . * debian/apport: Significant cleanup. * debian/rules: Disable SSE instructions on x86 to avoid SIGILL on some CPUs. (LP: #1353185) * debian/checkout-orig-source.mk: Don't include src/ prefix in orig tarball. * debian/patches/*: refresh line numbers. * debian/patches/search-credit.patch, debian/patches/additional-search-engines.patch: Track source files moved. * debian/patches/ffmpeg-gyp-config.patch, debian/patches/fix-gyp-space-in-object-filename-exception.patch, debian/patches/gyp-icu-m32-test: Disabled. No longer needs fixing. * debian/control: build-dep on openssl. * debian/patches/disable-sse2: Don't require SSE/SSE2 CPU features on x86. (LP: #1353185) * debian/rules: Use built-in PDF support. (LP: #513745, #1009902) -- Chad MILLER chad.mil...@canonical.com Wed, 15 Oct 2014 14:22:55 -0400 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1310163 Title: chromium-browser with multiple tabs crashes on startup in KDE environment To manage notifications about this bug go to: https://bugs.launchpad.net/chromium-browser/+bug/1310163/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com
[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
This bug was fixed in the package chromium-browser - 38.0.2125.111-0ubuntu0.14.10.1.1103 --- chromium-browser (38.0.2125.111-0ubuntu0.14.10.1.1103) utopic-security; urgency=medium * Upstream release 38.0.2125.111. * Upstream release 38.0.2125.104. * Upstream release 38.0.2125.101: (LP: #1310163) - CVE-2014-3188: A special thanks to Jüri Aedla for a combination of V8 and IPC bugs that can lead to remote code execution outside of the sandbox. - CVE-2014-3189: Out-of-bounds read in PDFium. - CVE-2014-3190: Use-after-free in Events. - CVE-2014-3191: Use-after-free in Rendering. - CVE-2014-3192: Use-after-free in DOM. - CVE-2014-3193: Type confusion in Session Management. - CVE-2014-3194: Use-after-free in Web Workers. - CVE-2014-3195: Information Leak in V8. - CVE-2014-3196: Permissions bypass in Windows Sandbox. - CVE-2014-3197: Information Leak in XSS Auditor. - CVE-2014-3198: Out-of-bounds read in PDFium. - CVE-2014-3199: Release Assert in V8 bindings. - CVE-2014-3200: Various fixes from internal audits, fuzzing and other initiatives (Chrome 38). * debian/rules: Prefer GCC 4.8 when compiling. 4.9 remains buggy. * Make the verification step in clean make more compare-able output. * debian/patches/configuration-directory.patch: Account for new location of policies directory in /etc . Change back. (LP: #1373802) * debian/patches/lp-translations-paths: Map old third_party filenames to new name after processor compiles. * debian/rules: Fix patch-translations rule, workflow. * debian/patches/macro-templates-not-match: Anonymous struct isn't sizable. * debian/chromium-browser.sh.in: Fix broken logic of CHROMIUM_USER_FLAGS, which has never worked. (LP: #1381644) * debian/patches/disable-sse: Disable more SSE #includes. * debian/rules: Omit unnecessary files from packaging. * debian/chromium-browser.sh.in: Fix variable name bug and suggest ~/.chromium-browser.init file over hamfisted CHROMIUM_USER_FLAGS. * debian/patches/5-desktop-integration-settings.patch: Adapt to new settings APIs. chromium-browser (37.0.2062.120-0ubuntu1) utopic; urgency=low * Upstream release 37.0.2062.120: - CVE-2014-3178: Use-after-free in rendering. Credit to miaubiz. - CVE-2014-3179: Various fixes from internal audits, fuzzing and other initiatives. * debian/rules: Simplify and rearrange. * debian/rules, debian/known_gyp_flags: Keep better track of known GYP flags, so we can fail when something changes unexpectedly. * debian/rules: Fix up patch-translations rule. chromium-browser (37.0.2062.94-0ubuntu1) utopic; urgency=low * Upstream release 37.0.2062.94. - CVE-2014-3165: Use-after-free in Blink websockets. - CVE-2014-3176, CVE-2014-3177: A combination of bugs in V8, IPC, sync, and extensions that can lead to remote code execution outside of the sandbox. - CVE-2014-3168: Use-after-free in SVG. - CVE-2014-3169: Use-after-free in DOM. - CVE-2014-3170: Extension permission dialog spoofing. - CVE-2014-3171: Use-after-free in bindings. - CVE-2014-3172: Issue related to extension debugging. - CVE-2014-3173: Uninitialized memory read in WebGL. - CVE-2014-3174: Uninitialized memory read in Web Audio. - CVE-2014-3175: Various fixes from internal audits, fuzzing and other initiatives. - CVE-2014-3176, CVE-2014-3177: Interaction of extensions, IPC, the sync API, and Google V8 to execute arbitrary code. * Fix a shell bug in the binary-wrapper that prevented USER flags from working properly. * debian/control: Suggests chromiumflashplugin . * debian/apport: Significant cleanup. * debian/rules: Disable SSE instructions on x86 to avoid SIGILL on some CPUs. (LP: #1353185) * debian/checkout-orig-source.mk: Don't include src/ prefix in orig tarball. * debian/patches/*: refresh line numbers. * debian/patches/search-credit.patch, debian/patches/additional-search-engines.patch: Track source files moved. * debian/patches/ffmpeg-gyp-config.patch, debian/patches/fix-gyp-space-in-object-filename-exception.patch, debian/patches/gyp-icu-m32-test: Disabled. No longer needs fixing. * debian/control: build-dep on openssl. * debian/patches/disable-sse2: Don't require SSE/SSE2 CPU features on x86. (LP: #1353185) * debian/rules: Use built-in PDF support. (LP: #513745, #1009902) -- Chad MILLER chad.mil...@canonical.com Wed, 15 Oct 2014 14:22:55 -0400 ** Changed in: chromium-browser (Ubuntu) Status: Fix Committed = Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-3165 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-3168 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-3169 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-3170 ** CVE added: http://www.cve.mitre.org/cgi-
[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
** Also affects: chromium-browser via http://code.google.com/p/chromium/issues/detail?id=357473 Importance: Unknown Status: Unknown ** Changed in: chromium-browser (Ubuntu) Importance: Undecided = High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1310163 Title: chromium-browser with multiple tabs crashes on startup in KDE environment To manage notifications about this bug go to: https://bugs.launchpad.net/chromium-browser/+bug/1310163/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
** Changed in: chromium-browser (Ubuntu) Status: Confirmed = Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1310163 Title: chromium-browser with multiple tabs crashes on startup in KDE environment To manage notifications about this bug go to: https://bugs.launchpad.net/chromium-browser/+bug/1310163/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
Status changed to 'Confirmed' because the bug affects multiple users. ** Changed in: chromium-browser (Ubuntu) Status: New = Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1310163 Title: chromium-browser with multiple tabs crashes on startup in KDE environment To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1310163/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
** Changed in: chromium-browser (Ubuntu) Assignee: (unassigned) = Chad Miller (cmiller) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1310163 Title: chromium-browser with multiple tabs crashes on startup in KDE environment To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1310163/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1310163] Re: chromium-browser with multiple tabs crashes on startup in KDE environment
This appears to be related to this upstream bug report: https://code.google.com/p/chromium/issues/detail?id=357473 Basically, the Chromium devs put a LOG(FATAL) in unofficial builds. So Chrome works fine, but not Chromium. The browser isn't actually crashing on its own, instead the LOG(FATAL) is killing the browser in order to get the attention of the user so they'll file a bug report. This is not related to KDE, KWallet, multiple tabs, or even starting up. It has to do with sending secure referrers to insecure hosts, which one of your tabs must have been doing. Going to any HTTPS page, right clicking a link and choosing Save link as... will cause this crash. ** Bug watch added: code.google.com/p/chromium/issues #357473 http://code.google.com/p/chromium/issues/detail?id=357473 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1310163 Title: chromium-browser with multiple tabs crashes on startup in KDE environment To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1310163/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs