Google Chrome Multiple Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Google Chrome, which could be exploited by remote attackers to bypass restrictions, cause a denial of service, or execute arbitrary code.
1. Caused by an error which could allow a website to bypass the pop-up blocker.
2. Related to canvas, which could cause a cross-origin video theft.
3. Related to HTML5 databases, which could cause a browser to crash.
4. Related to excessive file dialogs, which could cause a browser to crash.
5. Caused by a use-after-free error related to history handling, which could allow code execution.
6. Related to dangerous file types.
7. Caused by an error related to HTTP proxy authentication, which could cause a browser to crash.
8. Caused by an out-of-bounds read regression in WebM video support.
9. Caused by a bad indexing related to malformed videos, which could allow code execution.
10. Caused by a memory corruption error when handling a malicious privileged extension.
11. Caused by a use-after-free error related to SVG animations.
12. Caused by a use-after-free error related to mouse dragging events handling.
13. Caused by a double free within XPath handling.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
System / Technologies affected
- Google Chrome versions prior to 8.0.552.215
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to Google Chrome version 8.0.552.215 :
http://www.google.com/chrome
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Share with