‫ Google Chrome Multiple Vulnerabilities

IRCAD2013112985
ID: IRCAD2013112985
Release Date: 2013-11-13
Criticality level: Highly critical
Software:
Google Chrome 30.x
Description:
Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct spoofing attacks, disclose potentially sensitive information, and compromise a user's system.
1) A use-after-free error exists in speech input elements.
2) A use-after-free error exists in media elements.
3) An out-of-bounds read error exists in SVG.
4) A use-after-free error exists in "id" attribute strings.
5) A use-after-free error exists in DOM ranges.
6) An error related to interstitial warnings can be exploited to spoof contents of the address bar.
7) An out-of-bounds read error exists in HTTP parsing.
8) An error exists due to not checking certificates during TLS renegotiation.
9) Some unspecified errors exist.
10) A use-after-free error exists in libjingle.
The vulnerabilities are reported in versions prior to 31.0.1650.48.
Solution
Upgrade to version 31.0.1650.48.
References:
Secunia:
http://secunia.com/advisories/55637/

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 25 آبان 1392

امتیاز

امتیاز شما
تعداد امتیازها:0