CVSS: 9.8EPSS: 2%CPEs: 59EXPL: 0CVE-2013-2921
https://notcve.org/view.php?id=CVE-2013-2921
02 Oct 2013 — Double free vulnerability in the ResourceFetcher::didLoadResource function in core/fetch/ResourceFetcher.cpp in the resource loader in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering certain callback processing during the reporting of a resource entry. Vulnerabilidad de doble liberación en la función ResourceFetcher::didLoadResource en core/fetch/ResourceFetcher.cpp del cargador de recursos en B... • http://googlechromereleases.blogspot.com/2013/10/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 2%CPEs: 59EXPL: 0CVE-2013-2922
https://notcve.org/view.php?id=CVE-2013-2922
02 Oct 2013 — Use-after-free vulnerability in core/html/HTMLTemplateElement.cpp in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that operates on a TEMPLATE element. Vulnerabilidad de uso después de liberación en core/html/HTMLTemplateElement.cpp en Blink, tal como se utiliza en Google Chrome anterior a la versión 30.0.1599.66, permite a atacantes remotos causar una denegación de servicio o po... • http://googlechromereleases.blogspot.com/2013/10/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 59EXPL: 0CVE-2013-2923
https://notcve.org/view.php?id=CVE-2013-2923
02 Oct 2013 — Multiple unspecified vulnerabilities in Google Chrome before 30.0.1599.66 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. Múltiples vulnerabilidades sin especificar en Google Chrome anterior a la versión 30.0.1599.66 permite a atacantes causar una denegación de servicio o probablemente tener otro impacto a través de vectores desconocidos. • http://googlechromereleases.blogspot.com/2013/10/stable-channel-update.html •
CVSS: 9.8EPSS: 2%CPEs: 59EXPL: 0CVE-2013-2924
https://notcve.org/view.php?id=CVE-2013-2924
02 Oct 2013 — Use-after-free vulnerability in International Components for Unicode (ICU), as used in Google Chrome before 30.0.1599.66 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Vulnerabilidad de uso después de liberación en International Components for Unicode (ICU), tal como se utiliza en Google Chrome anterior a la versión 30.0.1599.66 y otros productos, permite a atacantes remotos causar una denegación de servicio o posibleme... • http://bugs.icu-project.org/trac/ticket/10318 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 51EXPL: 0CVE-2013-2887
https://notcve.org/view.php?id=CVE-2013-2887
21 Aug 2013 — Multiple unspecified vulnerabilities in Google Chrome before 29.0.1547.57 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. Múltiples vulnerabilidades no especificadas en Google Chrome anterior a v29.0.1547.57 permite a atacantes provocar una denegación de servicio o posiblemente tener otro impacto a través de vectores no especificados. • http://crbug.com/116128 •
CVSS: 8.1EPSS: 1%CPEs: 53EXPL: 0CVE-2013-2900
https://notcve.org/view.php?id=CVE-2013-2900
21 Aug 2013 — The FilePath::ReferencesParent function in files/file_path.cc in Google Chrome before 29.0.1547.57 on Windows does not properly handle pathname components composed entirely of . (dot) and whitespace characters, which allows remote attackers to conduct directory traversal attacks via a crafted directory name. La funcion FilePath::ReferencesParent en files/file_path.cc en Google Chrome anterior a v29.0.1547.57 en Windows no maneja adecuadamente las rutas de los componentes compuestos en su totalidad de. (punt... • http://crbug.com/181617 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.8EPSS: 1%CPEs: 52EXPL: 0CVE-2013-2901
https://notcve.org/view.php?id=CVE-2013-2901
21 Aug 2013 — Multiple integer overflows in (1) libGLESv2/renderer/Renderer9.cpp and (2) libGLESv2/renderer/Renderer11.cpp in Almost Native Graphics Layer Engine (ANGLE), as used in Google Chrome before 29.0.1547.57, allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Múltiples desbordamientos de enteros en (1) libGLESv2/renderer/Renderer9.cpp y (2) libGLESv2/renderer/Renderer11.cpp ien Almost Native Graphics Layer Engine (ANGLE), como es usado en Google Chro... • http://code.google.com/p/angleproject/issues/detail?id=444 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 0%CPEs: 52EXPL: 0CVE-2013-2905
https://notcve.org/view.php?id=CVE-2013-2905
21 Aug 2013 — The SharedMemory::Create function in memory/shared_memory_posix.cc in Google Chrome before 29.0.1547.57 uses weak permissions under /dev/shm/, which allows attackers to obtain sensitive information via direct access to a POSIX shared-memory file. La función SharedMemory::Create en memory/shared_memory_posix.cc en Google Chrome anterior a v29.0.1547.57 utiliza permisos débiles en /dev/shm/, lo que permite a atacantes obtener información sensible a través de un acceso directo a un fichero POSIX de memoria com... • http://crbug.com/254159 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 1%CPEs: 52EXPL: 0CVE-2013-2902
https://notcve.org/view.php?id=CVE-2013-2902
21 Aug 2013 — Use-after-free vulnerability in the XSLT ProcessingInstruction implementation in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to an applyXSLTransform call involving (1) an HTML document or (2) an xsl:processing-instruction element that is still in the process of loading. Vulnerabilidad de uso después de liberación en la implementación XSLT ProcessingInstruction en Blink, como es utiliza... • http://crbug.com/260105 • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 1%CPEs: 52EXPL: 0CVE-2013-2903
https://notcve.org/view.php?id=CVE-2013-2903
21 Aug 2013 — Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocument function in core/html/HTMLMediaElement.cpp in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving moving a (1) AUDIO or (2) VIDEO element between documents. Vulnerabilidad de uso después de liberación en la función HTMLMediaElement::didMoveToNewDocument en core/html/HTMLMediaElement.cpp en Blink, como es usado en Goog... • http://crbug.com/260156 • CWE-399: Resource Management Errors •