Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Google Chrome Multiple Vulnerabilities

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Google Chrome Multiple Vulnerabilities

Secunia Google Chrome Multiple Vulnerabilities
Secunia Official 1st May, 2011 21:21
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
Some vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct spoofing attacks, and potentially compromise a user's system.

1) An unspecified error related to a stale pointer exists within the handling of floating objects.

2) A linked-list race condition exists within the database handling.

Note: This vulnerability only affects the Linux and Mac versions.

3) The MIME handling does not properly ensure thread safety.

4) An extension with "tabs" permission can gain access to local files.

5) An integer overflow error exists within the float rendering.

6) An error related to blobs can be exploited to violate the same origin policy.

7) An unspecified error can be exploited to cause an interference between renderer processes.

Note: This vulnerability only affects the Linux version.

8) A use-after-free error exists within the handling of "<ruby>" tags and CSS.

9) A casting error exists within then handling of floating select lists.

10) An error related to mutation events can be exploited to corrupt node trees.

11) An unspecified error related to stale pointers exists in the layering code.

12) A race condition error exists within the sandbox launcher.

Note: This vulnerability only affects the Linux version.

13) Interrupted loads and navigation errors can be leveraged to spoof the URL bar.

14) An unspecified error related to a stale pointer exists within the handling of drop-down lists.

15) An unspecified error related to a stale pointer exists within the height calculations.

16) A use-after-free error exists within the handling of WebSockets.

17) An error related to dangling pointers exists within the handling of file dialogs.

18) An error related to dangling pointers exists within the handling of DOM id maps.

19) Redirects and manual reloads can be exploited to spoof the URL bar.

20) A use-after-free error exists within the handling of DOM ids.

21) An error related to stale pointers exists within the handling of PDF forms.

palisade

RE: Google Chrome Multiple Vulnerabilities
[+]
This reply has been minimised due to a negative Relevancy Score.
Anthony Wells RE: Google Chrome Multiple Vulnerabilities
Expert Contributor 1st May, 2011 21:50
Score: 2414
Posts: 3,310
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

@palisade ,

As a regular user of the Forum , you should be aware that this "Vulnerabilities" Forum is for technical commentary and observations of the SA itself .

Your problem is not relevant here as it concerns the detection rules/display in the PSI ; this "bug" is dealt with extensively elsewhere :-

http://secunia.com/community/forum/all_threads/?fo...

Take care

Anthony


--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+1
-0


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability