chromium-browser 39.0.2171.71-1 source package in Debian


chromium-browser (39.0.2171.71-1) unstable; urgency=medium

  * New upstream stable release:
    - CVE-2014-3566: SSLv3 support is now disabled by default.
    - CVE-2014-7899: Address bar spoofing. Credit to Eli Grey.
    - CVE-2014-7900: Use-after-free in pdfium. Credit to Atte Kettunen.
    - CVE-2014-7901: Integer overflow in pdfium. Credit to cloudfuzzer.
    - CVE-2014-7902: Use-after-free in pdfium. Credit to cloudfuzzer.
    - CVE-2014-7903: Buffer overflow in pdfium. Credit to cloudfuzzer.
    - CVE-2014-7904: Buffer overflow in Skia. Credit to Atte Kettunen.
    - CVE-2014-7905: Flaw allowing navigation to intents that do not have the
      BROWSABLE category. Credit to WangTao(neobyte).
    - CVE-2014-7906: Use-after-free in pepper plugins. Credit to Chen Zhang.
    - CVE-2014-0574: Double-free in Flash. Credit to biloulehibou.
    - CVE-2014-7907: Use-after-free in blink. Credit to Chen Zhang.
    - CVE-2014-7908: Integer overflow in media. Credit to Christoph Diehl.
    - CVE-2014-7909: Uninitialized memory read in Skia. Credit to miaubiz.
  * Display info about upstream ending support for non-sse2 (closes: #769836).
  * Remove non-free RFCs from the upstream tarball (closes: #771640).
  * Include a conf file for Google's API keys (closes: #748867).
  * Handle dangling chromium icon directory (closes: #766420).
  * Install icons into the correct path (closes: #767697).

 -- Michael Gilbert <email address hidden>  Mon, 01 Dec 2014 01:13:44 +0000

Upload details

Uploaded by:
Debian Chromium Maintainers
Uploaded to:
Original maintainer:
Debian Chromium Maintainers
i386 amd64 all
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section



File Size SHA-256 Checksum
chromium-browser_39.0.2171.71-1.dsc 3.9 KiB 1c31742923cbc3257dc5d81181abfc30eec28960c7eeca8da843bd8ae18f5c5a
chromium-browser_39.0.2171.71.orig.tar.xz 260.7 MiB b1f4e1c384405f7d93935e30dc6344ea63fcc06f980bdcf4a3c77590ea847a6b
chromium-browser_39.0.2171.71-1.debian.tar.xz 173.4 KiB 3f996bde87ae7b868dbcc9a408951c972af705d884ed88c9967aed99a3b7b600

No changes file available.

Binary packages built by this source