‫ Google Chrome Multiple Vulnerabilities

IRCAD2012092220
ID: IRCAD2012092220
Release Date: 2012-09-26
Criticality level: Highly critical
 
Software:
Google Chrome 21.x
 
Description:
Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.
1) Certain unspecified input related to frame handling is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
2) Certain unspecified input within v8 bindings is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
3) An error exists within plugin handling and can be exploited to cause DOM tree corruption.
4) An error due to SSE2 optimizations can be exploited to cause a buffer overflow.
5) An error exists within Skia and can be exploited to cause an out-of-bounds write.
6) A use-after-free error exists within onclick handling.
7) A use-after-free error exists related to SVG text references.
8) An integer overflow error exists related to WebGL handling.
9) An unspecified error can be exploited to cause DOM topology corruption.
10) An error exists within Skia and can be exploited to cause an out-of-bounds write.
11) Some weaknesses exist in the PDF viewer.
12) A use-after-free error exists within the plug-in handling.
13) A race condition exists when handling plug-in paint buffers.
14) An error when handling OGG containers can be exploited to reference an invalid pointer.
15) A double-free error exists on exit.
16) A use-after-free error exists within the PDF viewer.
17) An unspecified error exists and can be exploited to bypass the pop-up block.
18) A double-free error exists within XSL transforms.
19) Some errors within the PDF viewer can be exploited to cause an out-of-bounds write.
 
Solution
Upgrade to version 22.0.1229.79.
 
References:
Google:
 
Secunia:
 
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 8 مهر 1391

امتیاز

امتیاز شما
تعداد امتیازها:0