TITLE: Google Chrome Multiple Vulnerabilities Criticality level: Highly critical Impact: Cross Site Scripting, System access Where: From remote VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/40351/ DESCRIPTION: Some vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct cross-site scripting attacks or potentially to compromise a user's system. 1) An unspecified error related to "application/json" responses can be exploited to conduct cross-site scripting attacks. 2) An unspecified error related to video handling can be exploited to corrupt memory. 3) An unspecified error exists related to subresources being displayed in omnibox loading. No further information is currently available. 4) Another unspecified error related to video handling can be exploited to corrupt memory. 5) An unspecified error exists related to a stale pointer in the processing of x509-user-cert responses. No further information is currently available. SOLUTION: Update to version 5.0.375.86. ORIGINAL ADVISORY: http://googlechromereleases.blogspot.com/2010/06/stable-channel-update_24.html ========================= The list's FAQ's can be seen by sending an email to PCWorks-request@xxxxxxxxxxxxx with FAQ in the subject line. To unsubscribe, subscribe, set Digest or Vacation to on or off, go to //www.freelists.org/list/pcworks . You can also send an email to PCWorks-request@xxxxxxxxxxxxx with Unsubscribe in the subject line. Your member list settings can be found at //www.freelists.org/cgi-bin/lsg2.cgi/l=pcworks . Once logged in, you have access to numerous other email options. The list archives are located at //www.freelists.org/archives/pcworks/ . All email posted to the list will be placed there in the event anyone needs to look for previous posts. -zxdjhu-