Chromium is an open-source browser project that aims to build a safer, + faster, and more stable way for all users to experience the web. +
+ +Google Chrome is one fast, simple, and secure browser for all your + devices. +
+Multiple vulnerabilities have been discovered in Chromium and Google + Chrome. Please review the referenced CVE identifiers and Google Chrome + Releases for details. +
+A remote attacker could escalate privileges, cause a heap buffer + overflow, obtain sensitive information or spoof a URL. +
+There is no known workaround at this time.
+All Chromium users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=www-client/chromium-68.0.3440.75"
+
+
+ All Google Chrome users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=www-client/google-chrome-68.0.3440.75"
+
+
+ LinuX Containers user space utilities.
+lxc-user-nic when asked to delete a network interface will + unconditionally open a user provided path. This code path may be used by + an unprivileged user to check for the existence of a path which they + wouldn’t otherwise be able to reach. +
+A local unprivileged user could use this flaw to access arbitrary files, + including special device files. +
+There is no known workaround at this time.
+All LXC users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=app-emulation/lxc-3.0.1-r1"
+
+
+ NetworkManager is an universal network configuration daemon for laptops, + desktops, servers and virtualization hosts. +
+ +The VPNC plugin provides easy access Cisco Concentrator based VPN’s + utilizing NetworkManager. +
+When initiating a VPNC connection, NetworkManager spawns a new vpnc + process and passes the configuration via STDIN. By injecting a special + character into a configuration parameter, an attacker can coerce + NetworkManager to set the Password helper option to an attacker + controlled executable file. +
+A local attacker is able to escalate privileges via a specially crafted + configuration file. +
+There is no known workaround at this time.
+All NetworkManager VPNC plugin users should upgrade to the latest + version: +
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=net-misc/networkmanager-vpnc-1.2.6"
+
+
+ WebKitGTK+ is a full-featured port of the WebKit rendering engine, + suitable for projects requiring any kind of web integration, from hybrid + HTML/CSS applications to full-fledged web browsers. +
+Multiple vulnerabilities have been discovered in WebKitGTK+. Please + review the referenced CVE identifiers for details. +
+A remote attacker could execute arbitrary commands or cause a denial of + service condition via a maliciously crafted web content. +
+There is no known workaround at this time.
+All WebkitGTK+ users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-libs/webkit-gtk-2.20.4"
+
+
+