FreeBSD Ports: Chromium Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://googlechromereleases.blogspot.com/search/label/Stable%20updates http://www.vuxml.org/freebsd/60bbe12c-e2c1-11e1-a8ca-00262d5ed8ee.html

Insight

The following package is affected: chromium CVE-2012-2862 Use-after-free vulnerability in the PDF functionality in Google Chrome before 21.0.1180.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document. CVE-2012-2863 The PDF functionality in Google Chrome before 21.0.1180.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger out-of-bounds write operations.

Severity

Classification

CVE CVE-2012-2862, CVE-2012-2863
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

FreeBSD Ports: chromium
FreeBSD Ports: chromium
FreeBSD Ports: chromium
FreeBSD Ports: clamav
FreeBSD Ports: cacti

Take action and discover your vulnerabilities