{"id":"MGASA-2015-0062","summary":"Updated chromium-browser-stable packages fix security vulnerabilities","details":"Updated chromium-browser packages fix security vulnerabilities:\n\nUse-after-free vulnerability in the\nVisibleSelection::nonBoundaryShadowTreeRootNode function in\ncore/editing/VisibleSelection.cpp in the DOM implementation in Blink, as used\nin Google Chrome before 40.0.2214.111 allows remote attackers to cause a\ndenial of service or possibly have unspecified other impact via crafted\nJavaScript code that triggers improper handling of a shadow-root anchor\n(CVE-2015-1209).\n\nThe V8ThrowException::createDOMException function in\nbindings/core/v8/V8ThrowException.cpp in the V8 bindings in Blink, as used in\nGoogle Chrome before 40.0.2214.111 does not properly consider frame access\nrestrictions during the throwing of an exception, which allows remote\nattackers to bypass the Same Origin Policy via a crafted web site\n(CVE-2015-1210).\n\nThe OriginCanAccessServiceWorkers function in\ncontent/browser/service_worker/service_worker_dispatcher_host.cc in Google\nChrome before 40.0.2214.111 does not properly restrict the URI scheme during\na ServiceWorker registration, which allows remote attackers to gain\nprivileges via a filesystem: URI (CVE-2015-1211).\n\nMultiple unspecified vulnerabilities in Google Chrome before 40.0.2214.111\nallow attackers to cause a denial of service or possibly have other impact\nvia unknown vectors (CVE-2015-1212).\n","modified":"2026-04-16T06:25:22.997667672Z","published":"2015-02-11T20:47:51Z","upstream":["CVE-2015-1209","CVE-2015-1210","CVE-2015-1211","CVE-2015-1212"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0062.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=15213"},{"type":"WEB","url":"http://googlechromereleases.blogspot.com/2015/01/stable-channel-update_26.html"},{"type":"WEB","url":"http://googlechromereleases.blogspot.com/2015/01/stable-channel-update_30.html"},{"type":"WEB","url":"http://googlechromereleases.blogspot.com/2015/02/stable-channel-update.html"}],"affected":[{"package":{"name":"chromium-browser-stable","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"40.0.2214.111-1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0062.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}