Bugzilla – Bug 877768
VUL-0: CVE-2014-1740: google-chrome: websocket UAF
Last modified: 2014-09-01 13:13:03 UTC
Multiple use-after-free vulnerabilities in net/websockets/websocket_job.cc in
the WebSockets implementation in Google Chrome before 34.0.1847.137 allow remote
attackers to cause a denial of service or possibly have unspecified other impact
via vectors related to WebSocketJob deletion.
Use-after-free vulnerability in the FrameSelection::updateAppearance function in
core/editing/FrameSelection.cpp in Blink, as used in Google Chrome before
34.0.1847.137, allows remote attackers to cause a denial of service or possibly
have unspecified other impact by leveraging improper RenderObject handling.
bugbot adjusting priority
Chrome 35 stable has been released, fixing even more CVE's.
And Chromium 35 Stable was submitted to the maintenance track with MR#235119 and MR#235120
can you please submit with all CVEs listed?
If I had them, then they would have been listed. I added two more and that is all the information I have.
There seem to be some build errors:
https://build.opensuse.org/package/live_build_log/openSUSE:Maintenance:2843/chromium.openSUSE_12.3_Update/openSUSE_12.3_Update/x86_64 (and others)
And I dont have more CVE infos either.
The build error is caused by the fact that ninja is too old for 12.3. Unfortunately we never had this issue before as that we used standard make, which no longer works due to an upstream bug. Therefore I switched to Ninja, but the available version is too old.
I could submit ninja from Factory (version 1.4.0), but I am not sure if this would be ok.
Ok, try to submit the ninja package from 13.1 please
Ok. I submitted ninja from openSUSE:13.1 to 12.3 with MR#235531