Oval Definition:oval:com.redhat.rhsa:def:20141626
Revision Date:2014-10-14Version:601
Title:RHSA-2014:1626: chromium-browser security update (Critical)
Description:Chromium is an open-source web browser, powered by WebKit (Blink).

  • Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash or, potentially, execute arbitrary code with the privileges of the user running Chromium. (CVE-2014-3188, CVE-2014-3189, CVE-2014-3190, CVE-2014-3191, CVE-2014-3192, CVE-2014-3193, CVE-2014-3194, CVE-2014-3199, CVE-2014-3200)

  • Several information leak flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to disclose potentially sensitive information. (CVE-2014-3195, CVE-2014-3197, CVE-2014-3198)

    All Chromium users should upgrade to these updated packages, which contain Chromium version 38.0.2125.101, which corrects these issues. After installing the update, Chromium must be restarted for the changes to take effect.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2014-3188
    CVE-2014-3189
    CVE-2014-3190
    CVE-2014-3191
    CVE-2014-3192
    CVE-2014-3193
    CVE-2014-3194
    CVE-2014-3195
    CVE-2014-3197
    CVE-2014-3198
    CVE-2014-3199
    CVE-2014-3200
    RHSA-2014:1626-00
    Platform(s):Supplementary for Red Hat Enterprise Linux 6
    Product(s):
    Definition Synopsis
  • chromium-browser is earlier than 0:38.0.2125.101-2.el6_6
  • AND chromium-browser is signed with Red Hat redhatrelease2 key
  • AND Package Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • BACK