CVSS: 10.0EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0840 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0840
24 Jan 2013 — Google Chrome before 24.0.1312.56 does not validate URLs during the opening of new windows, which has unspecified impact and remote attack vectors. Google Chrome anterior a v24.0.1312.56 no valida URLs durante la apertura de nuevas ventanas, lo que tiene un impacto no especificado y vectores de ataque. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html •
CVSS: 8.8EPSS: 0%CPEs: 123EXPL: 0CVE-2012-5145 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5145
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG layout. Vulnerabilidad después de liberación en Google Chrome anterior a v24.0.1312.52 que permite a atacantes remotos causar una denegación de servicios o posiblemente tener otro impacto sin especificar a través de vectores relacionados con la capa SVG. Multiple vulnerabilities have been reported in Chromium and V8, some ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0835 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0835
15 Jan 2013 — Unspecified vulnerability in the Geolocation implementation in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (application crash) via unknown vectors. Una vulnerabilidad no especificada en la aplicación de geolocalización de Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio (por caída de la aplicación) a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html •
CVSS: 8.8EPSS: 0%CPEs: 123EXPL: 0CVE-2012-5149 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5149
15 Jan 2013 — Integer overflow in the audio IPC layer in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Desbordamiento de entero en la capa de audio IPC en Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos generar una denegación de servicio o posiblemente tener otro impacto no especificado mediante vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may a... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-189: Numeric Errors •
CVSS: 6.5EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0834 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0834
15 Jan 2013 — Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving glyphs. Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores que involucran glifos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 112EXPL: 0CVE-2013-0828 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0828
15 Jan 2013 — The PDF functionality in Google Chrome before 24.0.1312.52 does not properly perform a cast of an unspecified variable during processing of the root of the structure tree, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document. La funcionalidad PDF en Google Chrome anterior a v24.0.1312.52 no lleva a cabo debidamente una conversión de una variable no especificada durante el procesamiento de la raíz del árbol de la estructura, lo que permite a ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 112EXPL: 0CVE-2012-5157
https://notcve.org/view.php?id=CVE-2012-5157
15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document. Google Chrome anterior a v24.0.1312.52 no gestiona correctamente los datos de imagen en documentos PDF, lo que permite a atacantes remotos causar una denegación de servicio (lectura fuera de los límites) mediante un documento especialmente diesñado. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 121EXPL: 0CVE-2012-5156
https://notcve.org/view.php?id=CVE-2012-5156
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving PDF fields. Vulnerabilidad de uso después de la liberación en Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos producir una denegación de servicio (caída de aplicación) o tener otro impacto no especificado mediante vectores que comprenden los campos de un PDF. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 9.1EPSS: 0%CPEs: 112EXPL: 0CVE-2013-0829 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0829
15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly maintain database metadata, which allows remote attackers to bypass intended file-access restrictions via unspecified vectors. Google Chrome antes de v24.0.1312.52 no mantiene adecuadamente los metadatos de base de datos, lo que permite a atacantes remotos evitar las restricciones de acceso a archivos a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. V... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 124EXPL: 0CVE-2012-5154 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5154
15 Jan 2013 — Integer overflow in Google Chrome before 24.0.1312.52 on Windows allows attackers to cause a denial of service or possibly have unspecified other impact via vectors related to allocation of shared memory. Desbordamiento de entero en Google Chrome anterior a v24.0.1312.52 en Windows permite a atacantes generar una denegación de servicio o posiblemente tener otro impacto no especificado mediante vectores relacioandos con la asignación de memoria compartida. Multiple vulnerabilities have been reported in Chrom... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-189: Numeric Errors •