chromium important openSUSE 13.1 Update Chromium was updated to 53.0.2785.116 to fix a number of security issus. The following vulnerabilities were fixed in 53.0.2785.113 (boo#992305): - CVE-2016-5170: Use after free in Blink - CVE-2016-5171: Use after free in Blink - CVE-2016-5172: Arbitrary Memory Read in v8 - CVE-2016-5173: Extension resource access - CVE-2016-5174: Popup not correctly suppressed - CVE-2016-5175: Various fixes from internal audits, fuzzing and other initiatives. The following vulnerabilities were fixed in 53.0.2785.89 (boo#996648): - CVE-2016-5147: Universal XSS in Blink. - CVE-2016-5148: Universal XSS in Blink. - CVE-2016-5149: Script injection in extensions. - CVE-2016-5150: Use after free in Blink. - CVE-2016-5151: Use after free in PDFium. - CVE-2016-5152: Heap overflow in PDFium. - CVE-2016-5153: Use after destruction in Blink. - CVE-2016-5154: Heap overflow in PDFium. - CVE-2016-5155: Address bar spoofing. - CVE-2016-5156: Use after free in event bindings. - CVE-2016-5157: Heap overflow in PDFium. - CVE-2016-5158: Heap overflow in PDFium. - CVE-2016-5159: Heap overflow in PDFium. - CVE-2016-5161: Type confusion in Blink. - CVE-2016-5162: Extensions web accessible resources bypass. - CVE-2016-5163: Address bar spoofing. - CVE-2016-5164: Universal XSS using DevTools. - CVE-2016-5165: Script injection in DevTools. - CVE-2016-5166: SMB Relay Attack via Save Page As. - CVE-2016-5160: Extensions web accessible resources bypass. The following security issues were fixed in 52.0.2743.116(boo#992305) - CVE-2016-5141: Address bar spoofing (boo#992314) - CVE-2016-5142: Use-after-free in Blink (boo#992313) - CVE-2016-5139: Heap overflow in pdfium (boo#992311) - CVE-2016-5140: Heap overflow in pdfium (boo#992310) - CVE-2016-5145: Same origin bypass for images in Blink (boo#992320) - CVE-2016-5143: Parameter sanitization failure in DevTools (boo#992319) - CVE-2016-5144: Parameter sanitization failure in DevTools (boo#992315) - CVE-2016-5146: Various fixes from internal audits, fuzzing and other initiatives (boo#992309) A number of tracked build system fixes are included. (boo#996032, boo#99606, boo#995932) rpmlint and rpmlint-mini were updated to work around a memory exhaustion problem with this package on 32 bit (boo#969732). chromedriver-53.0.2785.116-159.8.i586.rpm chromedriver-debuginfo-53.0.2785.116-159.8.i586.rpm chromium-53.0.2785.116-159.8.i586.rpm chromium-53.0.2785.116-159.8.src.rpm chromium-debuginfo-53.0.2785.116-159.8.i586.rpm chromium-desktop-gnome-53.0.2785.116-159.8.i586.rpm chromium-desktop-kde-53.0.2785.116-159.8.i586.rpm chromium-ffmpegsumo-53.0.2785.116-159.8.i586.rpm chromium-ffmpegsumo-debuginfo-53.0.2785.116-159.8.i586.rpm rpmlint-mini-1.5-2.4.4.i586.rpm rpmlint-mini-1.5-2.4.4.src.rpm rpmlint-mini-debuginfo-1.5-2.4.4.i586.rpm rpmlint-mini-debugsource-1.5-2.4.4.i586.rpm rpmlint-1.5-12.4.1.noarch.rpm rpmlint-1.5-12.4.1.src.rpm chromedriver-53.0.2785.116-159.8.x86_64.rpm chromedriver-debuginfo-53.0.2785.116-159.8.x86_64.rpm chromium-53.0.2785.116-159.8.x86_64.rpm chromium-debuginfo-53.0.2785.116-159.8.x86_64.rpm chromium-desktop-gnome-53.0.2785.116-159.8.x86_64.rpm chromium-desktop-kde-53.0.2785.116-159.8.x86_64.rpm chromium-ffmpegsumo-53.0.2785.116-159.8.x86_64.rpm chromium-ffmpegsumo-debuginfo-53.0.2785.116-159.8.x86_64.rpm rpmlint-mini-1.5-2.4.4.x86_64.rpm rpmlint-mini-debuginfo-1.5-2.4.4.x86_64.rpm rpmlint-mini-debugsource-1.5-2.4.4.x86_64.rpm 4691 low openSUSE 13.1 Update - Import commit 728667785d27368d8c05533c499e261d9f10429f 492b2f887 core: make mount units from /proc/self/mountinfo possibly bind to a device (#4515) (boo#909418 bsc#912715 bsc#945340) f27f424a1 core: Do not bind a mount unit to a device, if it was from mountinfo a72f626cb 99-systemd.rules: don't ignore CDROM devices even if not ready 43b54553e unit: use weaker dependencies between mount and device units in --user mode 87ae75cd0 rules: clean up stale CD drive mounts after ejection 61ed15226 core/mount: add dependencies to dynamically mounted mounts too fc6307126 fstab-generator: remove bogus condition (bsc#1013989) 702fc9217 coredumpctl: let gdb handle the SIGINT signal (#4901) (bsc#1012591) - sub packages should also require the same %{release} as the main package. - Rename kbd-model-map-extra into kbd-model-map.legacy - Import commit 948e64242c5b43c655918ecf6826e95b130b6fe4 2ad9feb man: explain that *KeyIgnoreInhibited only apply to a subset of locks 60ac1f8 Revert "logind: really handle *KeyIgnoreInhibited options in logind.conf" (bsc#1001790 bsc#1005404) ec5f02b systemctl: make sure list-jobs doesn't return failure on success (bsc#1005497) 23457e1 core: only warn on short reads on signal fd 0ede6de manager: be stricter with incomining notifications, warn properly about too large ones 0f27394 manager: don't ever busy loop when we get a notification message we can't process 8dd71a9 Revert "kbd-model-map" - Disable seccomp for ppc64le (bsc#964168) This feature has been introduced for this arch in kernel 4.3 and SLE12, SLE12-SP1, 13.1, 13.2 distros run an older kernel (3.16 for 13.2 and 3.12 for the others). - Add "mac-us" in kbd-model-map-extra (bsc#968183) libudev-mini-devel-210-52.1.i586.rpm libudev-mini1-210-52.1.i586.rpm libudev-mini1-debuginfo-210-52.1.i586.rpm systemd-mini-210-52.1.i586.rpm systemd-mini-210-52.1.src.rpm systemd-mini-debuginfo-210-52.1.i586.rpm systemd-mini-debugsource-210-52.1.i586.rpm systemd-mini-devel-210-52.1.i586.rpm systemd-mini-sysvinit-210-52.1.i586.rpm udev-mini-210-52.1.i586.rpm udev-mini-debuginfo-210-52.1.i586.rpm libgudev-1_0-0-210-52.1.i586.rpm libgudev-1_0-0-32bit-210-52.1.x86_64.rpm libgudev-1_0-0-debuginfo-210-52.1.i586.rpm libgudev-1_0-0-debuginfo-32bit-210-52.1.x86_64.rpm libgudev-1_0-devel-210-52.1.i586.rpm libudev-devel-210-52.1.i586.rpm libudev1-210-52.1.i586.rpm libudev1-32bit-210-52.1.x86_64.rpm libudev1-debuginfo-210-52.1.i586.rpm libudev1-debuginfo-32bit-210-52.1.x86_64.rpm nss-myhostname-210-52.1.i586.rpm nss-myhostname-32bit-210-52.1.x86_64.rpm nss-myhostname-debuginfo-210-52.1.i586.rpm nss-myhostname-debuginfo-32bit-210-52.1.x86_64.rpm systemd-210-52.1.i586.rpm systemd-210-52.1.src.rpm systemd-32bit-210-52.1.x86_64.rpm systemd-bash-completion-210-52.1.noarch.rpm systemd-debuginfo-210-52.1.i586.rpm systemd-debuginfo-32bit-210-52.1.x86_64.rpm systemd-debugsource-210-52.1.i586.rpm systemd-devel-210-52.1.i586.rpm systemd-journal-gateway-210-52.1.i586.rpm systemd-journal-gateway-debuginfo-210-52.1.i586.rpm systemd-logger-210-52.1.i586.rpm systemd-sysvinit-210-52.1.i586.rpm typelib-1_0-GUdev-1_0-210-52.1.i586.rpm udev-210-52.1.i586.rpm udev-debuginfo-210-52.1.i586.rpm libudev-mini-devel-210-52.1.x86_64.rpm libudev-mini1-210-52.1.x86_64.rpm libudev-mini1-debuginfo-210-52.1.x86_64.rpm systemd-mini-210-52.1.x86_64.rpm systemd-mini-debuginfo-210-52.1.x86_64.rpm systemd-mini-debugsource-210-52.1.x86_64.rpm systemd-mini-devel-210-52.1.x86_64.rpm systemd-mini-sysvinit-210-52.1.x86_64.rpm udev-mini-210-52.1.x86_64.rpm udev-mini-debuginfo-210-52.1.x86_64.rpm libgudev-1_0-0-210-52.1.x86_64.rpm libgudev-1_0-0-debuginfo-210-52.1.x86_64.rpm libgudev-1_0-devel-210-52.1.x86_64.rpm libudev-devel-210-52.1.x86_64.rpm libudev1-210-52.1.x86_64.rpm libudev1-debuginfo-210-52.1.x86_64.rpm nss-myhostname-210-52.1.x86_64.rpm nss-myhostname-debuginfo-210-52.1.x86_64.rpm systemd-210-52.1.x86_64.rpm systemd-debuginfo-210-52.1.x86_64.rpm systemd-debugsource-210-52.1.x86_64.rpm systemd-devel-210-52.1.x86_64.rpm systemd-journal-gateway-210-52.1.x86_64.rpm systemd-journal-gateway-debuginfo-210-52.1.x86_64.rpm systemd-logger-210-52.1.x86_64.rpm systemd-sysvinit-210-52.1.x86_64.rpm typelib-1_0-GUdev-1_0-210-52.1.x86_64.rpm udev-210-52.1.x86_64.rpm udev-debuginfo-210-52.1.x86_64.rpm