-
Committer:
Bazaar Package Importer
-
Author(s):
Fabien Tassin
-
Date:
2011-05-24 23:42:08 UTC
-
mfrom:
(1.5.11 upstream)
-
Revision ID:
james.westby@ubuntu.com-20110524234208-1dql9xe2i6n003ho
Tags: 11.0.696.71~r86024-0ubuntu1
* New Minor upstream release from the Stable Channel (LP: #787846)
This release fixes the following security issues:
+ WebKit issues:
- [72189] Low, CVE-2011-1801: Pop-up blocker bypass. Credit to Chamal De
Silva.
- [82546] High, CVE-2011-1804: Stale pointer in floats rendering. Credit
to Martin Barbella.
- [82903] Critical, CVE-2011-1807: Out-of-bounds write in blob handling.
Credit to Google Chrome Security Team (Inferno) and Kostya Serebryany
of the Chromium development community.
- other issues covered by CVE-2011-1802, CVE-2011-1803, CVE-2011-1805
+ GPU/WebGL issue:
- [82873] Critical, CVE-2011-1806: Memory corruption in GPU command
buffer. Credit to Google Chrome Security Team (Cris Neckar).
* Update the svg icon once again, the previous one contained an embedded png
(LP: #748881)
- update debian/chromium-browser.svg
* Don't build with libjpeg-turbo on armel, to prevent a FTBFS
- update debian/rules