CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2013-0883 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0883
23 Feb 2013 — Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service (incorrect read operation) via unspecified vectors. Skia usado en Google Chrome v25.0.1364.97 sobre Windows y Linux, y anterior a v25.0.1364.99 sobre Mac OS X, permite a atacantes remotos provocar una denegación de servicio (operación de lectura incorrecta) a través de vectores no especificados. Multiple vulnerabilities have been reported in Chrom... • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 89EXPL: 0CVE-2013-0886
https://notcve.org/view.php?id=CVE-2013-0886
23 Feb 2013 — Google Chrome before 25.0.1364.99 on Mac OS X does not properly implement signal handling for Native Client (aka NaCl) code, which has unspecified impact and attack vectors. Google Chrome antes v25.0.1364.99 en Mac OS X no aplica correctamente el manejo de señales para el codigo de Native Client (también conocido como NaCl), que tiene un impacto no especificado y vectores de ataque • http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html •
CVSS: 10.0EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0842 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0842
24 Jan 2013 — Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors. Google Chrome anterior a v24.0.1312.56 no maneja correctamente caracteres %00 en nombres de ruta, lo que tiene un impacto no especificado y vectores de ataque. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html •
CVSS: 9.8EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0841 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0841
24 Jan 2013 — Array index error in the content-blocking functionality in Google Chrome before 24.0.1312.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Errores índice de array en la funcionalidad de bloqueo de contenido de Google Chrome antes v24.0.1312.56 que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos. Multiple vulnerabilities have been reported in ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 126EXPL: 0CVE-2013-0843
https://notcve.org/view.php?id=CVE-2013-0843
24 Jan 2013 — content/renderer/media/webrtc_audio_renderer.cc in Google Chrome before 24.0.1312.56 on Mac OS X does not use an appropriate buffer size for the 96 kHz sampling rate, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a web site that provides WebRTC audio. content/renderer/media/webrtc_audio_renderer.cc en Google Chrome anterior a v24.0.1312.56 en Mac OS X no utiliza apropiadamente el tamaño de búfer para los 96k... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0839 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0839
24 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of fonts in CANVAS elements. Vulnerabilidad de uso después de la liberación en Google Chrome antes de v24.0.1312.56 que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el manejador de fuentes en elemetos CANVAS Mu... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0840 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0840
24 Jan 2013 — Google Chrome before 24.0.1312.56 does not validate URLs during the opening of new windows, which has unspecified impact and remote attack vectors. Google Chrome anterior a v24.0.1312.56 no valida URLs durante la apertura de nuevas ventanas, lo que tiene un impacto no especificado y vectores de ataque. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html •
CVSS: 8.8EPSS: 0%CPEs: 221EXPL: 0CVE-2013-0836 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0836
15 Jan 2013 — Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, does not properly implement garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code. Google V8 antes de v3.14.5.3, tal como se utiliza en Google Chrome antes v24.0.1312.52, no implementa correctamente la recolección de basura, lo que permite a atacantes remotos provocar una denegación de servicio (por caída de la aplicación)... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0835 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0835
15 Jan 2013 — Unspecified vulnerability in the Geolocation implementation in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (application crash) via unknown vectors. Una vulnerabilidad no especificada en la aplicación de geolocalización de Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio (por caída de la aplicación) a través de vectores desconocidos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html •
CVSS: 9.1EPSS: 0%CPEs: 112EXPL: 0CVE-2013-0829 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0829
15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly maintain database metadata, which allows remote attackers to bypass intended file-access restrictions via unspecified vectors. Google Chrome antes de v24.0.1312.52 no mantiene adecuadamente los metadatos de base de datos, lo que permite a atacantes remotos evitar las restricciones de acceso a archivos a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. V... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •