Google Chrome Multiple Vulnerabilities
Last Update Date:
17 May 2012 18:00
Release Date:
17 May 2012
4305
Views
RISK: High Risk
TYPE: Clients - Browsers
Multiple vulnerabilities have been identified in Google Chrome, where some have unknown impacts and others can be exploited by malicious people to bypass certain security restrictions, and compromise a user's system.
- An error exists when loading links from internal pages, and related to incorrect window navigation and a Nvidia driver bug.
- A UI corruption error exists with long autofilled values.
- A use-after-free error exists with style element, in table handling, with indexed DB, in GTK omnibox handling and in PDF with corrupt font encoding name.
- An out-of-bounds read error exists in the hairline drawing, glyph handling, Tibetan handling and drawing dash paths.
- An out-of-bounds write error exists in the OGG container and sampled functions with PDF.
- A race condition exists in workers.
- An invalid write error exists in the v8 regex engine.
- A bad search path error exists for Windows Media Player plug-in.
- An off-by-one write error exists in libxml.
Impact
- Remote Code Execution
- Security Restriction Bypass
System / Technologies affected
- Google Chrome versions prior to 19.0.1084.46
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to version 19.0.1084.46.
Vulnerability Identifier
- CVE-2011-3084
- CVE-2011-3085
- CVE-2011-3086
- CVE-2011-3087
- CVE-2011-3088
- CVE-2011-3089
- CVE-2011-3090
- CVE-2011-3091
- CVE-2011-3092
- CVE-2011-3093
- CVE-2011-3094
- CVE-2011-3095
- CVE-2011-3096
- CVE-2011-3097
- CVE-2011-3098
- CVE-2011-3099
- CVE-2011-3100
Source
Related Link
Share with