CVSS: 8.8EPSS: 0%CPEs: 126EXPL: 0CVE-2013-0843
https://notcve.org/view.php?id=CVE-2013-0843
24 Jan 2013 — content/renderer/media/webrtc_audio_renderer.cc in Google Chrome before 24.0.1312.56 on Mac OS X does not use an appropriate buffer size for the 96 kHz sampling rate, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a web site that provides WebRTC audio. content/renderer/media/webrtc_audio_renderer.cc en Google Chrome anterior a v24.0.1312.56 en Mac OS X no utiliza apropiadamente el tamaño de búfer para los 96k... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0839 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0839
24 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of fonts in CANVAS elements. Vulnerabilidad de uso después de la liberación en Google Chrome antes de v24.0.1312.56 que permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el manejador de fuentes en elemetos CANVAS Mu... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 116EXPL: 0CVE-2013-0840 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0840
24 Jan 2013 — Google Chrome before 24.0.1312.56 does not validate URLs during the opening of new windows, which has unspecified impact and remote attack vectors. Google Chrome anterior a v24.0.1312.56 no valida URLs durante la apertura de nuevas ventanas, lo que tiene un impacto no especificado y vectores de ataque. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update_22.html •
CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0CVE-2013-0831 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0831
15 Jan 2013 — Directory traversal vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to have an unspecified impact by leveraging access to an extension process. Vulnerabilidad de salto de directorio en Google Chrome antes de v24.0.1312.52 permite a atacantes remotos tener un impacto no especificado, aprovechando el acceso al proceso de ampliación. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 122EXPL: 0CVE-2012-5155
https://notcve.org/view.php?id=CVE-2012-5155
15 Jan 2013 — Google Chrome before 24.0.1312.52 on Mac OS X does not use an appropriate sandboxing approach for worker processes, which makes it easier for remote attackers to bypass intended access restrictions via unspecified vectors. Google Chrome anterior a v24.0.1312.52 en Mac OS X no utiliza de forma apropiada el sandbox, haciendo fácil para usuarios remotos eludir las restricciones de acceso mediante vectores no especificados. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 121EXPL: 0CVE-2012-5156
https://notcve.org/view.php?id=CVE-2012-5156
15 Jan 2013 — Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving PDF fields. Vulnerabilidad de uso después de la liberación en Google Chrome anterior a v24.0.1312.52 permite a atacantes remotos producir una denegación de servicio (caída de aplicación) o tener otro impacto no especificado mediante vectores que comprenden los campos de un PDF. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 221EXPL: 0CVE-2013-0836 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0836
15 Jan 2013 — Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, does not properly implement garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code. Google V8 antes de v3.14.5.3, tal como se utiliza en Google Chrome antes v24.0.1312.52, no implementa correctamente la recolección de basura, lo que permite a atacantes remotos provocar una denegación de servicio (por caída de la aplicación)... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-399: Resource Management Errors •
CVSS: 9.1EPSS: 0%CPEs: 112EXPL: 0CVE-2013-0829 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0829
15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly maintain database metadata, which allows remote attackers to bypass intended file-access restrictions via unspecified vectors. Google Chrome antes de v24.0.1312.52 no mantiene adecuadamente los metadatos de base de datos, lo que permite a atacantes remotos evitar las restricciones de acceso a archivos a través de vectores no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. V... • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 112EXPL: 0CVE-2012-5157
https://notcve.org/view.php?id=CVE-2012-5157
15 Jan 2013 — Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document. Google Chrome anterior a v24.0.1312.52 no gestiona correctamente los datos de imagen en documentos PDF, lo que permite a atacantes remotos causar una denegación de servicio (lectura fuera de los límites) mediante un documento especialmente diesñado. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 123EXPL: 0CVE-2013-0833 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2013-0833
15 Jan 2013 — Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to printing. Google Chrome antes de v24.0.1312.52 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores relacionados con la impresión. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2013/01/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •