*** This bug is a security vulnerability *** Public security bug reported:
This release fixes a number of issues including: Cursors and backgrounds sometimes do not load [111218] Plugins not loading on some pages [108228] Text paste includes trailing spaces [106551] Websites using touch controls break [110332] [105867] High CVE-2011-3031: Use-after-free in v8 element wrapper. Credit to Chamal de Silva. [108037] High CVE-2011-3032: Use-after-free in SVG value handling. Credit to Arthur Gerkis. [108406] [115471] High CVE-2011-3033: Buffer overflow in the Skia drawing library. Credit to Aki Helin of OUSPG. [111748] High CVE-2011-3034: Use-after-free in SVG document handling. Credit to Arthur Gerkis. [112212] High CVE-2011-3035: Use-after-free in SVG use handling. Credit to Arthur Gerkis. [113258] High CVE-2011-3036: Bad cast in line box handling. Credit to miaubiz. [113439] [114924] [115028] High CVE-2011-3037: Bad casts in anonymous block splitting. Credit to miaubiz. [113497] High CVE-2011-3038: Use-after-free in multi-column handling. Credit to miaubiz. [113707] High CVE-2011-3039: Use-after-free in quote handling. Credit to miaubiz. [114054] High CVE-2011-3040: Out-of-bounds read in text handling. Credit to miaubiz. [114068] High CVE-2011-3041: Use-after-free in class attribute handling. Credit to miaubiz. [114219] High CVE-2011-3042: Use-after-free in table section handling. Credit to miaubiz. [115681] High CVE-2011-3043: Use-after-free in flexbox with floats. Credit to miaubiz. [116093] High CVE-2011-3044: Use-after-free with SVG animation elements. Credit to Arthur Gerkis. ** Affects: chromium-browser (Ubuntu) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Affects: chromium-browser (Ubuntu Lucid) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Affects: chromium-browser (Ubuntu Maverick) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Affects: chromium-browser (Ubuntu Natty) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Affects: chromium-browser (Ubuntu Oneiric) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Affects: chromium-browser (Ubuntu Precise) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Visibility changed to: Public ** Also affects: chromium-browser (Ubuntu Lucid) Importance: Undecided Status: New ** Also affects: chromium-browser (Ubuntu Maverick) Importance: Undecided Status: New ** Also affects: chromium-browser (Ubuntu Precise) Importance: Medium Assignee: Micah Gersten (micahg) Status: In Progress ** Also affects: chromium-browser (Ubuntu Natty) Importance: Undecided Status: New ** Also affects: chromium-browser (Ubuntu Oneiric) Importance: Undecided Status: New ** Changed in: chromium-browser (Ubuntu Oneiric) Assignee: (unassigned) => Micah Gersten (micahg) ** Changed in: chromium-browser (Ubuntu Natty) Assignee: (unassigned) => Micah Gersten (micahg) ** Changed in: chromium-browser (Ubuntu Maverick) Assignee: (unassigned) => Micah Gersten (micahg) ** Changed in: chromium-browser (Ubuntu Lucid) Assignee: (unassigned) => Micah Gersten (micahg) ** Changed in: chromium-browser (Ubuntu Oneiric) Status: New => In Progress ** Changed in: chromium-browser (Ubuntu Natty) Status: New => In Progress ** Changed in: chromium-browser (Ubuntu Maverick) Status: New => In Progress ** Changed in: chromium-browser (Ubuntu Lucid) Status: New => In Progress ** Changed in: chromium-browser (Ubuntu Lucid) Importance: Undecided => Medium ** Changed in: chromium-browser (Ubuntu Maverick) Importance: Undecided => Medium ** Changed in: chromium-browser (Ubuntu Oneiric) Importance: Undecided => Medium ** Changed in: chromium-browser (Ubuntu Natty) Importance: Undecided => Medium ** Description changed: This release fixes a number of issues including: - Cursors and backgrounds sometimes do not load (bug 111218) - Plugins not loading on some pages (bug 108228) - Text paste includes trailing spaces (bug 106551) - Websites using touch controls break (bug 110332) + Cursors and backgrounds sometimes do not load [111218] + Plugins not loading on some pages [108228] + Text paste includes trailing spaces [106551] + Websites using touch controls break [110332] [105867] High CVE-2011-3031: Use-after-free in v8 element wrapper. Credit to Chamal de Silva. [108037] High CVE-2011-3032: Use-after-free in SVG value handling. Credit to Arthur Gerkis. [108406] [115471] High CVE-2011-3033: Buffer overflow in the Skia drawing library. Credit to Aki Helin of OUSPG. [111748] High CVE-2011-3034: Use-after-free in SVG document handling. Credit to Arthur Gerkis. [112212] High CVE-2011-3035: Use-after-free in SVG use handling. Credit to Arthur Gerkis. [113258] High CVE-2011-3036: Bad cast in line box handling. Credit to miaubiz. [113439] [114924] [115028] High CVE-2011-3037: Bad casts in anonymous block splitting. Credit to miaubiz. [113497] High CVE-2011-3038: Use-after-free in multi-column handling. Credit to miaubiz. [113707] High CVE-2011-3039: Use-after-free in quote handling. Credit to miaubiz. [114054] High CVE-2011-3040: Out-of-bounds read in text handling. Credit to miaubiz. [114068] High CVE-2011-3041: Use-after-free in class attribute handling. Credit to miaubiz. [114219] High CVE-2011-3042: Use-after-free in table section handling. Credit to miaubiz. [115681] High CVE-2011-3043: Use-after-free in flexbox with floats. Credit to miaubiz. [116093] High CVE-2011-3044: Use-after-free with SVG animation elements. Credit to Arthur Gerkis. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/946914 Title: Update to 17.0.963.65 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/946914/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs