[PCWorks] Google Chrome Multiple Vulnerabilities

• From: "Clint Hamilton-PCWorks Admin" <PCWorks@xxxxxxxxxxxxxxxxxxxxxxxx>
• To: "PCWorks@xxxxxxxxxxxxx" <pcworks@xxxxxxxxxxxxx>
• Date: Tue, 6 Mar 2012 01:32:11 -0600

TITLE:
Google Chrome Multiple Vulnerabilities

Criticality level:  Highly critical
Impact:  Security Bypass, Cross Site Scripting, System access
Where:  From remote

Software:  Google Chrome 17.x

SECUNIA ADVISORY ID:
http://secunia.com/advisories/48265/

DESCRIPTION:
Some vulnerabilities have been reported in Google Chrome, where 
one
has an unknown impact and others can be exploited by malicious 
people
to conduct cross-site scripting attacks, bypass certain 
security
restrictions, and compromise a user's system.

1) A use-after-free error exists within v8 element wrapper 
handling.

2) A use-after-free error exists within SVG value handling.

3) A buffer overflow exists within the Skia drawing library.

4) A use-after-free error exists within SVG document handling.

5) A use-after-free error exists within SVG use handling.

6) A casting error exists within line box handling.

7) A casting error exists within anonymous block splitting.

8) A use-after-free error exists within multi-column handling.

9) A use-after-free error exists within quote handling.

10) An out-of-bounds read error exists within text handling.

11) A use-after-free error exists within class attribute 
handling.

12) A use-after-free error exists within table section 
handling.

13) A use-after-free error exists within flexbox with floats
handling.

14) A use-after-free error exists within SVG animation elements
handling.

15) The application bundles a vulnerable version of the Adobe 
Flash
player.

For more information:
http://secunia.com/SA48033/

SOLUTION:
Update to version 17.0.963.65.

ORIGINAL ADVISORY:
http://googlechromereleases.blogspot.com/2012/03/chrome-stable-update.html


=========================
The list's FAQ's can be seen by sending an email to 
PCWorks-request@xxxxxxxxxxxxx with FAQ in the subject line.

To unsubscribe, subscribe, set Digest or Vacation to on or off, go to 
//www.freelists.org/list/pcworks .  You can also send an email to 
PCWorks-request@xxxxxxxxxxxxx with Unsubscribe in the subject line.  Your 
member list settings can be found at 
//www.freelists.org/cgi-bin/lsg2.cgi/l=pcworks .  Once logged in, you have 
access to numerous other email options.  

The list archives are located at //www.freelists.org/archives/pcworks/ .  
All email posted to the list will be placed there in the event anyone needs to 
look for previous posts.
-zxdjhu-

Other related posts:

• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities - Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin

1. Home
2. pcworks
3. Archive
4. 03-2012

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---