Ravens PHP Scripts

Google Chrome Multiple Vulnerabilities
Date: Thursday, February 10, 2011 @ 23:47:26 PST
Topic: Security


SECUNIA ADVISORY ID: SA43021

VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/43021/

CRITICALITY: Highly Critical

RELEASE DATE: 2011-02-11

DESCRIPTION: Some vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to compromise a user's system. The vulnerabilities are reported in versions prior to 9.0.597.94



1) The application bundles a vulnerable version of the Flash plugin. For more information: SA43267
2) An error related to a stale pointer exists within the animation event handling
3) A use-after-free error exists the handling of SVG font faces.
4) An error related to a stale pointer exists within the anonymous block handling.
5) Errors within the plugin handling can be exploited to cause out-of-bounds reads.
6) Processes may not always properly terminate in case of an out-of-memory condition.

SOLUTION: Update to version 9.0.597.94.

PROVIDED AND/OR DISCOVERED BY: The vendor credits:
2) Rik Cabanier
3) miaubiz
4) Martin Barbella
5) Bill Budge, Google
6) David Warren, CERT/CC.

ORIGINAL ADVISORY: http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html






This article comes from Ravens PHP Scripts
http://www.ravenphpscripts.com

The URL for this story is:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3896