TITLE: Google Chrome Multiple Vulnerabilities Criticality level: Highly critical Impact: Exposure of sensitive information, System access Where: From remote VERIFY ADVISORY: http://secunia.com/advisories/40743/ DESCRIPTION: Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can potentially be exploited by malicious people to disclose sensitive information or compromise a user's system. 1) An unspecified error in the layout code can be exploited to disclose memory content. 2) An unspecified error exists related to large canvases. Further information is currently not available. 3) An unspecified error in the rendering code can be exploited to corrupt memory. 4) An unspecified error in the SVG handling can be exploited to corrupt memory. 5) An unspecified error exists related to hostname truncation and incorrect eliding. No further information is currently available. NOTE: Two workarounds that prevent exploitation of a Windows kernel bug and a glibc bug have also been implemented. No further information is currently available. SOLUTION: Update to version 5.0.375.125. ORIGINAL ADVISORY: http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html ========================= The list's FAQ's can be seen by sending an email to PCWorks-request@xxxxxxxxxxxxx with FAQ in the subject line. To unsubscribe, subscribe, set Digest or Vacation to on or off, go to //www.freelists.org/list/pcworks . You can also send an email to PCWorks-request@xxxxxxxxxxxxx with Unsubscribe in the subject line. Your member list settings can be found at //www.freelists.org/cgi-bin/lsg2.cgi/l=pcworks . Once logged in, you have access to numerous other email options. The list archives are located at //www.freelists.org/archives/pcworks/ . All email posted to the list will be placed there in the event anyone needs to look for previous posts. -zxdjhu-