====================================================================

                             CERT-Renater

                  Note d'Information No. 2012/VULN475
____________________________________________________________________

DATE                : 29/11/2012

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S) : Systems running Google Chrome versions prior to
                          23.0.1271.91.

======================================================================
http://googlechromereleases.blogspot.fr/2012/11/stable-channel-update.html
______________________________________________________________________

 Stable Channel Update
The Stable channel has been updated to 23.0.1271.91 for Windows, Mac,
Linux, and ChromeFrame platforms.

This version fixes several issues including:

    No audio from Flash content when speaker configuration is set to
Quadraphonic (Issue: 159924)
    Aw, Snap renderer crash on Windows Server 2003 (Issue: 160559)



Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the
referenced bugs may be kept private until a majority of our users are
up to date with the fix.

Occasionally, we issue special rewards for bugs outside of Chrome,
particularly where the bug is very severe and/or we are able to
partially work around the issue:

    [$1000] [152746] High CVE-2012-5131: Corrupt rendering in the Apple
OSX driver for Intel GPUs. Credit to Justin Drake.


And back to your regular scheduled rewards:

    [$1000] [156567] High CVE-2012-5133: Use-after-free in SVG filters.
Credit to miaubiz.
    [$500] [148638] Medium CVE-2012-5130: Out-of-bounds read in Skia.
Credit to Atte Kettunen of OUSPG.
    [155711] Low CVE-2012-5132: Browser crash with chunked encoding.
Credit to Attila Szász.
    [158249] High CVE-2012-5134: Buffer underflow in libxml. Credit to
Google Chrome Security Team (Jüri Aedla).
    [159165] Medium CVE-2012-5135: Use-after-free with printing. Credit
to Fermin Serna of Google Security Team.
    [159829] Medium CVE-2012-5136: Bad cast in input element handling.
Credit to Google Chrome Security Team (Inferno).


Many of the above bugs were detected using AddressSanitizer.

Full details about what changes are in this release are available in
the SVN revision log.  Interested in hopping on the stable channel?
Find out how.  If you find a new issue, please let us know by filing a
bug.

Karen Grunberg
Google Chrome


======================================================================

=========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
=========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44          +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41          +
+ 75013 Paris           | email: certsvp@renater.fr     +
=========================================================