Google Chrome Multiple Vulnerabilities

Last Update Date: 15 Dec 2011 10:39 Release Date: 15 Dec 2011 4699 Views

RISK: High Risk

High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities have been identified in Google Chrome, which can be exploited by malicious people to conduct spoofing attacks, disclose potentially sensitive information, and compromise a user's system.

  1. An error in regex matching, libxml, PDF parser, SVG parsing, handling YUV video frames, and handling PDF and PDF cross references can be exploited to cause an out-of-bounds read.
  2. An error in the view-source functionality can be exploited to spoof a URL bar.
  3. An error when handling a CSS property array can be exploited to corrupt memory (only the 64-bit platforms affected).
  4. A use-after-free error exists in SVG filters, range handling and bidi handling.
  5. An error within v8 i18n handling can be exploited to cause an out-of-bounds write.
  6. An error when handling certain PDF fonts can be exploited to cause a buffer overflow.
  7. An error in FileWatcher can be exploited to cause a stack-based buffer overflow.

Impact

  • Remote Code Execution
  • Information Disclosure
  • Spoofing

System / Technologies affected

  • Google Chrome 15.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to version 16.0.912.63.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Internet Explorer Multiple Vulnerabilities

14 Dec 2011 4586 Views

Next

GTK+ Insecure Library Loading Vulnerability

6 Sep 2011 5142 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY