Skip to main content

Google Chrome Multiple Vulnerabilities

Last Update Date: 28 Jun 2012 11:55 Release Date: 28 Jun 2012 5118 Views

RISK: High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities have been identified in Google Chrome, which can be exploited by malicious people to disclose certain sensitive information, bypass certain security restrictions, and compromise a user's system.

  1. An unspecified error can be exploited to disclose the iFrame fragment ID, and interrupt other sandboxed processes.
  2. A use-after-free error exists within table section handling, counter layout handling, SVG resource handling, SVG painting, the Mac UI, first-letter handling and SVG reference handling.
  3. An unspecified error exists within texture handling and autofill display.
  4. An out-of-bounds read error exists within SVG filter handling, the PDF section and texture conversion.
  5. Integer overflow errors exist within the PDF section and the Matroska container.
  6. A error when setting array values can be exploited to defererence a NULL-pointer.
  7. A NULL-pointer dereference error exists within PDF image codec.
  8. An error within the PDF JS API can be exploited to cause a buffer overflow.

Impact

  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Google Chrome 19.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to version 20.0.1132.43.

Vulnerability Identifier


Source


Related Link