-
Committer:
Bazaar Package Importer
-
Author(s):
Micah Gersten, Fabien Tassin
-
Date:
2011-06-30 12:52:08 UTC
-
mfrom:
(1.6.7 upstream)
-
Revision ID:
james.westby@ubuntu.com-20110630125208-go500ikkm1h0maji
Tags: 12.0.742.112~r90304-0ubuntu0.11.04.1
[ Fabien Tassin <fta@ubuntu.com> ]
* New Minor upstream release from the Stable Channel (LP: #803107)
This release fixes the following security issues:
+ WebKit issues:
- [84355] High, CVE-2011-2346: Use-after-free in SVG font handling.
Credit to miaubiz.
- [85003] High, CVE-2011-2347: Memory corruption in CSS parsing. Credit
to miaubiz.
- [85102] High, CVE-2011-2350: Lifetime and re-entrancy issues in the
HTML parser. Credit to miaubiz.
- [85211] High, CVE-2011-2351: Use-after-free with SVG use element.
Credit to miaubiz.
- [85418] High, CVE-2011-2349: Use-after-free in text selection. Credit
to miaubiz.
+ Chromium issues:
- [77493] Medium, CVE-2011-2345: Out-of-bounds read in NPAPI string
handling. Credit to Philippe Arteau.
- [85177] High, CVE-2011-2348: Bad bounds check in v8. Credit to Aki
Helin of OUSPG.