Page 264 of 3350 results (0.007 seconds)

CVSS: 8.8EPSS: 0%CPEs: 112EXPL: 0

CVE-2013-0828 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2013-0828

15 Jan 2013 — The PDF functionality in Google Chrome before 24.0.1312.52 does not properly perform a cast of an unspecified variable during processing of the root of the structure tree, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document. La funcionalidad PDF en Google Chrome anterior a v24.0.1312.52 no lleva a cabo debidamente una conversión de una variable no especificada durante el procesamiento de la raíz del árbol de la estructura, lo que permite a ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •

CVSS: 6.5EPSS: 0%CPEs: 112EXPL: 0

CVE-2012-5157

https://notcve.org/view.php?id=CVE-2012-5157

15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document. Google Chrome anterior a v24.0.1312.52 no gestiona correctamente los datos de imagen en documentos PDF, lo que permite a atacantes remotos causar una denegación de servicio (lectura fuera de los límites) mediante un documento especialmente diesñado. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 8.8EPSS: 0%CPEs: 121EXPL: 0

CVE-2012-5156

https://notcve.org/view.php?id=CVE-2012-5156

15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving PDF fields. Vulnerabilidad de uso después de la liberación en Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos producir una denegación de servicio (caída de aplicación) o tener otro impacto no especificado mediante vectores que comprenden los campos de un PDF. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •

CVSS: 9.1EPSS: 0%CPEs: 112EXPL: 0

CVE-2013-0829 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2013-0829

15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly maintain database metadata, which allows remote attackers to bypass intended file-access restrictions via unspecified vectors. Google Chrome antes de v24.0.1312.52 no mantiene adecuadamente los metadatos de base de datos, lo que permite a atacantes remotos evitar las restricciones de acceso a archivos a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. V... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 9.8EPSS: 0%CPEs: 124EXPL: 0

CVE-2012-5154 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2012-5154

15 Jan 2013 — Integer overflow in Google Chrome before 24.0.1312.52 on Windows allows attackers to cause a denial of service or possibly have unspecified other impact via vectors related to allocation of shared memory. Desbordamiento de entero en Google Chrome anterior a v24.0.1312.52 en Windows permite a atacantes generar una denegación de servicio o posiblemente tener otro impacto no especificado mediante vectores relacioandos con la asignación de memoria compartida. Multiple vulnerabilities have been reported in Chrom... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-189: Numeric Errors •

CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0

CVE-2013-0837 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2013-0837

15 Jan 2013 — Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of extension tabs. Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el manejo de las pestañas de extensión. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-20: Improper Input Validation •

CVSS: 8.8EPSS: 0%CPEs: 112EXPL: 0

CVE-2012-5151 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2012-5151

15 Jan 2013 — Integer overflow in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code in a PDF document. Desbordamiento de entero en Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos generar una denegación de servicio o posiblemente tener otro impacto no especificado mediante código JavaScript especialmente diseñado en un documento PDF. Multiple vulnerabilities have been reported in Chromium and V8, s... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-189: Numeric Errors •

CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0

CVE-2012-5147 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2012-5147

15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM handling. Vulnerabilidad de liberación después de uso en Google Chrome anterior 24.0.1312.52, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto sin especificar a través de vectores relacionados con el manejo de DOM. Multiple vulnerabilities have been reported in Chromium and ... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •

CVSS: 8.8EPSS: 0%CPEs: 221EXPL: 0

CVE-2013-0836 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2013-0836

15 Jan 2013 — Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, does not properly implement garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code. Google V8 antes de v3.14.5.3, tal como se utiliza en Google Chrome antes v24.0.1312.52, no implementa correctamente la recolección de basura, lo que permite a atacantes remotos provocar una denegación de servicio (por caída de la aplicación)... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •

CVSS: 9.8EPSS: 0%CPEs: 123EXPL: 0

CVE-2012-5148 – Gentoo Linux Security Advisory 201309-16

https://notcve.org/view.php?id=CVE-2012-5148

15 Jan 2013 — The hyphenation functionality in Google Chrome before 24.0.1312.52 does not properly validate file names, which has unspecified impact and attack vectors. La funcionalidad hyphenation en Google Chrome anterior a v24.0.1312.52 no valida correctamente nombres de ficheros, el cual tiene un impacto no especificado y vectores de ataques. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-20: Improper Input Validation •