فا

‫ Google Chrome Multiple Vulnerabilities

IRCAD2013102920
ID: IRCAD2013102920
Release Date: 2013-10-02
Criticality level: Highly critical
 
Software:
Google Chrome 29.x
 
Description:
Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct spoofing attacks and compromise a user's system.
1) Some race condition errors exist in Web Audio.
2) An out-of-bounds read error exists in Window.prototype object.
3) An error when handling the HTTP status code 204 can be exploited to spoof contents of the address bar.
4) A use-after-free error exists in inline-block rendering.
5) A use-after-free error exists in Web Audio.
6) A use-after-free error exists in XSLT.
7) A use-after-free error exists in PPAPI.
8) A use-after-free error exists in XML document parsing.
9) A use-after-free error exists in the Windows color chooser dialog.
10) An error when handling schemes can be exploited to spoof contents of the address bar.
11) Another error when handling the HTTP status code 204 can be exploited to spoof contents of the address bar.
12) An out-of-bounds read error exists in Web Audio.
13) A use-after-free error exists in DOM.
14) An error within V8 can be exploited to corrupt memory.
15) An out-of-bounds read error exists in URL parsing.
16) A use-after-free error exists in resource loader.
17) A use-after-free error exists in template element.
18) Some unspecified errors exist.
19) A use-after-free error exists in ICU.
The vulnerabilities are reported in versions prior to 30.0.1599.66.
 
Solution
Upgrade to version 30.0.1599.66.
 
References:
 
Secunia:
 
 
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 13 مهر 1392

امتیاز

امتیاز شما
تعداد امتیازها:0