[PCWorks] Google Chrome Multiple Vulnerabilities

• From: "Clint Hamilton-PCWorks Admin" <PCWorks@xxxxxxxxxxxxxxxxxxxxxxxx>
• To: "PCWorks@xxxxxxxxxxxxx" <pcworks@xxxxxxxxxxxxx>
• Date: Sat, 4 Dec 2010 00:08:09 -0600

TITLE:
Google Chrome Multiple Vulnerabilities

Criticality level:  Highly critical
Impact:  Exposure of sensitive information, DoS, System access
Where:  From remote

http://secunia.com/advisories/42472/

DESCRIPTION:
Multiple vulnerabilities and weaknesses have been reported in
Google Chrome, where some have an unknown impact and
other can potentially be exploited by malicious people to
compromise a vulnerable system.

1) An unspecified error exists, which can lead to cross-origin
video theft with canvas.

2) An unspecified error can be exploited to cause a crash with
HTML5
databases.

3) An unspecified error can be exploited to cause excessive
file
dialogs, potentially leading to a crash.

4) A use-after-free error in the history handling can be
exploited to
corrupt memory.

5) An unspecified error related to HTTP proxy authentication
can be
exploited to cause a crash.

6) An unspecified error in WebM video support can be exploited
to
trigger an out-of-bounds read.

7) An error related to incorrect indexing with malformed video
data
can be exploited to cause a crash.

8) An unspecified error in the handling of privileged
extensions can
be exploited to corrupt memory.

9) An use-after-free error in the handling of SVG animations
can be
exploited to corrupt memory.

10) A use-after-free error in the mouse dragging event handling
can
be exploited to corrupt memory.

11) A double-free error in the XPath handling can be exploited
to
corrupt memory.

SOLUTION:
Fixed in version 8.0.552.215.

ORIGINAL ADVISORY:
http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates.html


=========================
The list's FAQ's can be seen by sending an email to 
PCWorks-request@xxxxxxxxxxxxx with FAQ in the subject line.

To unsubscribe, subscribe, set Digest or Vacation to on or off, go to 
//www.freelists.org/list/pcworks .  You can also send an email to 
PCWorks-request@xxxxxxxxxxxxx with Unsubscribe in the subject line.  Your 
member list settings can be found at 
//www.freelists.org/cgi-bin/lsg2.cgi/l=pcworks .  Once logged in, you have 
access to numerous other email options.  

The list archives are located at //www.freelists.org/archives/pcworks/ .  
All email posted to the list will be placed there in the event anyone needs to 
look for previous posts.
-zxdjhu-

Other related posts:

• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities - Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Google Chrome Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin

1. Home
2. pcworks
3. Archive
4. 12-2010

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---