-
Committer:
Bazaar Package Importer
-
Author(s):
Fabien Tassin
-
Date:
2010-06-25 02:05:06 UTC
-
mfrom:
(1.1.13 upstream)
-
Revision ID:
james.westby@ubuntu.com-20100625020506-h2nptvbab0scar59
Tags: 5.0.375.86~r49890-0ubuntu1
* New upstream release from the Stable Channel (LP: #598913)
Fixes the following security issues:
- [38105] Medium XSS via application/json response (regression). Credit to
Ben Davis for original discovery and Emanuele Gentili for regression
discovery.
- [43322] Medium Memory error in video handling. Credit to Mark Dowd under
contract to Google Chrome Security Team.
- [43967] High Subresource displayed in omnibox loading. Credit to Michal
Zalewski of Google Security Team.
- [45267] High Memory error in video handling. Credit to Google Chrome
Security Team (Cris Neckar).
- [46126] High Stale pointer in x509-user-cert response. Credit to Rodrigo
Marcos of SECFORCE.
* Drop the XLIB_SKIP_ARGB_VISUALS workaround now that the rgba patch has
been backed off from gtk2 (LP: #584959)
- update debian/chromium-browser.sh
* Show in about:version and in the About UI when chromium is running on a different
distribution that it has been built on
- udpate debian/rules
- rename and update debian/chromium-browser.sh => debian/chromium-browser.sh.in