Summary
The remote host is missing updates announced in
advisory GLSA 201201-03.
Solution
All Chromium users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose
'>=www-client/chromium-16.0.912.75'
All V8 users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-lang/v8-3.6.6.11'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201201-03 http://bugs.gentoo.org/show_bug.cgi?id=394587
http://bugs.gentoo.org/show_bug.cgi?id=397907
http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.html http://googlechromereleases.blogspot.com/2012/01/stable-channel-update.html
Insight
Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code.
Severity
Classification
-
CVE CVE-2011-3903, CVE-2011-3904, CVE-2011-3906, CVE-2011-3907, CVE-2011-3908, CVE-2011-3909, CVE-2011-3910, CVE-2011-3912, CVE-2011-3913, CVE-2011-3914, CVE-2011-3917, CVE-2011-3921, CVE-2011-3922 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities