‫ Google Chrome Multiple Vulnerabilities

IRCAD2012062028
ID: IRCAD2012062028
Release Date: 2012-06-27
Criticality level: Highly critical
 
Software:
Google Chrome 19.x
 
Description:
Multiple vulnerabilities have been reported in Google Chrome, where some have unknown impacts and others can be exploited by malicious people to disclose certain sensitive information, bypass certain security restrictions, and compromise a user's system.
1) An unspecified error can be exploited to disclose the iFrame fragment ID.
2) An unspecified error can be exploited to interrupt other sandboxed processes
Note: This vulnerability affects Windows only.
3) A use-after-free error exists within table section handling.
4) A use-after-free error exists within counter layout handling.
5) An unspecified error exists within texture handling.
6 An out-of-bounds read error exists within SVG filter handling.
7) An unspecified error exists within autofill display.
8) Multiple out-of-bounds read errors exists in the PDF section.
9) A use-after-free error exists within SVG resource handling.
10) A use-after-free error exists within SVG painting.
11) An out-of-bounds read error exists within texture conversion.
12) A use-after-free error exists within the Mac UI.
Note: This vulnerability affects Mac OS only.
13) Multiple integer overflow errors exist within the PDF section.
14) A use-after-free error exists within first-letter handling.
15) A error when setting array values can be exploited to defererence a NULL-pointer.
16) A use-after-free error exists within SVG reference handling.
17) A NULL-pointer dereference error exists within PDF image codec.
18) An error within the PDF JS API can be exploited to cause a buffer overflow.
19) An integer overflow error exists within the Matroska container.
 
Solution
Upgrade to version 20.0.1132.43.
 
References:
 
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 7 تیر 1391

امتیاز

امتیاز شما
تعداد امتیازها:0