MGASA-2014-0107

Advisory lineage Upstream: 9 Downstream: 0

Upstream

CVE-2013-6653 CVE-2013-6654 CVE-2013-6655 CVE-2013-6656 CVE-2013-6657 CVE-2013-6658

Published: 27 Feb 2014, 22:07

Last modified:16 Apr 2026, 06:22

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Feb 2014, 22:07

Published

Vulnerability first disclosed

16 Apr 2026, 06:22

Last Modified

Vulnerability information updated

Description

Updated chromium-browser-stable packages address multiple vulnerabilities Use-after-free related to web contents (CVE-2013-6653). Bad cast in SVG (CVE-2013-6654). Use-after-free in layout (CVE-2013-6655). Information leaks in XSS auditor (CVE-2013-6656, CVE-2013-6657). Use-after-free in layout (CVE-2013-6658). Issue with certificates validation in TLS handshake (CVE-2013-6659). Information leak in drag and drop (CVE-2013-6660). Various fixes from internal audits, fuzzing and other initiatives. Of these, seven are fixes for issues that could have allowed for sandbox escapes from compromised renderers (CVE-2013-6661).

Affected Systems

mageia•chromium-browser-stable
< 33.0.1750.117-1.mga3 | < 33.0.1750.117-1.mga3.tainted
mageia•chromium-browser-stable
< 33.0.1750.117-1.mga4 | < 33.0.1750.117-1.mga4.tainted

MGASA-2014-0107

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)