CVSS: 8.1EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0910 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0910
04 Mar 2013 — Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in. Google Chrome anterior a 25.0.1364.152 no maneja adecuadamente la interacción entre el proceso del navegador y el proceso de renderizado durante la carga de un plug-in autorizado, lo que facilita a atacantes remo... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0906 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0906
04 Mar 2013 — The IndexedDB implementation in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. La implementación de IndexedDB en Google Chrome anterior a v25.0.1364.152 permite a atacantes remotos causar una denegación de servicio (corrupción de memoria) o posiblemente tener otro impacto no especificado a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, ... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 106EXPL: 0CVE-2013-0903 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0903
04 Mar 2013 — Use-after-free vulnerability in Google Chrome before 25.0.1364.152 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of browser navigation. Vulnerabilidad Use-after free en Google Chrome anterior a v25.0.1364.152, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente otro impacto no especificado a través de vectores relacionados con la navegación. Multiple vulnerabilities have be... • http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_4.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0891 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0891
23 Feb 2013 — Integer overflow in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a blob. Desbordamiento de entero en Google Chrome v25.0.1364.97 sobre Windows y Linux, y anterior a v25.0.1364.99 sobre Mac OS X, permite a atacantes remotos provocar una denegación de servicio u otro impacto a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium ... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0880 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0880
23 Feb 2013 — Use-after-free vulnerability in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to databases. Vulnerabilidad de uso después de liberación de memoria en Google Chrome v25.0.1364.97 sobre Windows y Linux, y anterior a v25.0.1364.99 sobre Mac OS X, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro tipo de impacto ... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 178EXPL: 0CVE-2013-2268
https://notcve.org/view.php?id=CVE-2013-2268
23 Feb 2013 — Unspecified vulnerability in the MathML implementation in WebKit in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, has unknown impact and remote attack vectors, related to a "high severity security issue." Vulnerabilidad no especificada en la aplicación MathML en WebKit en Google Chrome antes v25.0.1364.97 en Windows y Linux, y antes v25.0.1364.99 en Mac OS X, tiene un impacto desconocido y vectores de ataque a distancia, relacionado con un "problema de segurida... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0889 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0889
23 Feb 2013 — Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly enforce a user gesture requirement before proceeding with a file download, which might make it easier for remote attackers to execute arbitrary code via a crafted file. Google Chrome v25.0.1364.97 sobre Windows y Linux, y anterior a v25.0.1364.99 sobre Mac OS X, no fuerza al usuario adecuadamente antes de proceder con la descarga de un archivo, lo que podría facilitar a atacantes remotos la ejecuci... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-863: Incorrect Authorization •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2013-0894 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0894
23 Feb 2013 — Buffer overflow in the vorbis_parse_setup_hdr_floors function in the Vorbis decoder in vorbisdec.c in libavcodec in FFmpeg through 1.1.3, as used in Google Chrome before 25.0.1364.97 on Windows and Linux and before 25.0.1364.99 on Mac OS X and other products, allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds array access) or possibly have unspecified other impact via vectors involving a zero value for a bark map size. Desbordamiento de búfer en la función vorbis_par... • http://git.chromium.org/gitweb/?p=chromium/deps/ffmpeg.git%3Ba=commit%3Bh=e1e70d9bb9852b7d099379afc95531a632a20ba5 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0882 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0882
23 Feb 2013 — Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service (incorrect memory access) or possibly have unspecified other impact via a large number of SVG parameters. Google Chrome anterior a v25.0.1364.97 en Windows y Linux, y anterior a v25.0.1364.99 en Mac OS X, permite a atacantes remotos causar una denegación de servicio (incorrecto acceso a memoria) o posiblemente tener otro impacto no especificado mediante un número ... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-416: Use After Free •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0896 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0896
23 Feb 2013 — Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly manage memory during message handling for plug-ins, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Google Chrome antes v25.0.1364.97 en Windows y Linux, y antes v25.0.1364.99 en Mac OS X, no gestiona adecuadamente la memoria durante la gestión de mensajes para los plug-ins, que permite a atacantes remotos provocar una denega... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •