Skip to main content

Google Chrome Two Vulnerabilities

Last Update Date: 12 Oct 2012 11:39 Release Date: 12 Oct 2012 5289 Views

RISK: High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Two vulnerabilities have been identified in Google Chrome, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

  1. A use-after-free error in Webkit's SVG (Scalable Vector Graphics) functionality can be exploited to dereference already freed memory.
  2. An unspecified error in the IPC (Inter-Process Communication) layer can be exploited to write arbitrary files and escape the Chrome sandbox.

Impact

  • Remote Code Execution
  • Security Restriction Bypass

System / Technologies affected

  • Google Chrome 22.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 22.0.1229.94.

Vulnerability Identifier


Source


Related Link