Summary
The remote host is missing updates announced in
advisory GLSA 201111-01.
Solution
All Chromium users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=www-client/chromium-15.0.874.102'
All V8 users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-lang/v8-3.5.10.22'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201111-01 http://bugs.gentoo.org/show_bug.cgi?id=351525
http://bugs.gentoo.org/show_bug.cgi?id=353626
http://bugs.gentoo.org/show_bug.cgi?id=354121
http://bugs.gentoo.org/show_bug.cgi?id=356933
http://bugs.gentoo.org/show_bug.cgi?id=357963
http://bugs.gentoo.org/show_bug.cgi?id=358581
http://bugs.gentoo.org/show_bug.cgi?id=360399
http://bugs.gentoo.org/show_bug.cgi?id=363629
http://bugs.gentoo.org/show_bug.cgi?id=365125
http://bugs.gentoo.org/show_bug.cgi?id=366335
http://bugs.gentoo.org/show_bug.cgi?id=367013
http://bugs.gentoo.org/show_bug.cgi?id=368649
http://bugs.gentoo.org/show_bug.cgi?id=370481
http://bugs.gentoo.org/show_bug.cgi?id=373451
http://bugs.gentoo.org/show_bug.cgi?id=373469
http://bugs.gentoo.org/show_bug.cgi?id=377475
http://bugs.gentoo.org/show_bug.cgi?id=377629
http://bugs.gentoo.org/show_bug.cgi?id=380311
http://bugs.gentoo.org/show_bug.cgi?id=380897
http://bugs.gentoo.org/show_bug.cgi?id=381713
http://bugs.gentoo.org/show_bug.cgi?id=383251
http://bugs.gentoo.org/show_bug.cgi?id=385649
http://bugs.gentoo.org/show_bug.cgi?id=388461
http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates.html http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html http://googlechromereleases.blogspot.com/2011/05/beta-and-stable-channel-update.html http://googlechromereleases.blogspot.com/2011/05/stable-channel-update.html http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html http://googlechromereleases.blogspot.com/2011/06/stable-channel-update_28.html http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html http://googlechromereleases.blogspot.com/2011/08/stable-channel-update.html http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html http://googlechromereleases.blogspot.com/2011/09/stable-channel-update.html http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html http://googlechromereleases.blogspot.com/2011/10/stable-channel-update.html http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_28.html http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html
Insight
Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code and local root privilege escalation.
Severity
Classification
-
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities