CVSS: 10.0EPSS: 0%CPEs: 70EXPL: 0CVE-2012-5141 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5141
12 Dec 2012 — Google Chrome before 23.0.1271.97 does not properly restrict instantiation of the Chromoting client plug-in, which has unspecified impact and attack vectors. Google Chrome antes de 23.0.1271.97 no restringe correctamente creación de instancias del complemento cliente Chromoting, lo que tiene un impacto y vectores de ataque no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html •
CVSS: 10.0EPSS: 1%CPEs: 88EXPL: 0CVE-2012-5144 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-5144
12 Dec 2012 — Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN." Google Chrome antes 23.0.1271.97 no realiza correctamente la decodificación AAC, que permite a atacantes remotos provocar una denegación de servicio (corrupción de pila ... • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 70EXPL: 0CVE-2012-5139 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5139
12 Dec 2012 — Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to visibility events. Google Chrome antes de v23.0.1271.97 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la visibilidad de eventos. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow executi... • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 70EXPL: 0CVE-2012-5140 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5140
12 Dec 2012 — Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the URL loader. Vulnerabilidad de uso después de liberación en Google Chrome antes de 23.0.1271.97 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con el gestor de URL. Multiple vulnerabilities have been reported in Chromium and V... • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 70EXPL: 0CVE-2012-5143 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5143
12 Dec 2012 — Integer overflow in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PPAPI image buffers. Desbordamiento de entero en Google Chrome antes v23.0.1271.97 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con buffers de imagen PPAPI. Multiple vulnerabilities have been reported in Chromium and V8, some of which may ... • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 1%CPEs: 68EXPL: 0CVE-2012-5137 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5137
04 Dec 2012 — Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Media Source API. vulnerabilidad de uso después de liberación en Google Chrome antes de v23.0.1271.95 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la API Media Source. Multiple vulnerabilities have been reported in Chro... • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update_29.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2012-5129 – Gentoo Linux Security Advisory 201404-06
https://notcve.org/view.php?id=CVE-2012-5129
04 Dec 2012 — Heap-based buffer overflow in the WebGL subsystem in Google Chrome OS before 23.0.1271.94 allows remote attackers to cause a denial of service (GPU process crash) or possibly have unspecified other impact via unknown vectors. Desbordamiento de búfer en memoria dinámica en el subsistema WebGL en Google Chrome OS antes de v23.0.1271.94, permite a atacantes remotos provocar una denegación de servicio (caída del proceso GPU) o posiblemente tener un impacto no especificado a través de vectores desconocidos. Mult... • http://googlechromereleases.blogspot.com/2012/11/stable-update-for-chrome-os_30.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-5138 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5138
04 Dec 2012 — Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact and attack vectors. Google Chrome antes de v23.0.1271.95 no controla correctamente las rutas de archivos, lo que tiene impacto y vectores de ataque no especificados. Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. Versions less than 29.0.1457.57 are affected. • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update_29.html •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 0CVE-2012-5136 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5136
28 Nov 2012 — Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during handling of the INPUT element, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted HTML document. Google Chrome antes de v23.0.1271.91 no realiza adecuadamente una conversión de una variable específica durante la manipulación del elemento INPUT, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente otro impacto a travé... • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 2%CPEs: 64EXPL: 0CVE-2012-5135 – Gentoo Linux Security Advisory 201309-16
https://notcve.org/view.php?id=CVE-2012-5135
28 Nov 2012 — Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing. Vulnerabilidad de uso después de liberación en Google Chrome antes de v23.0.1271.91 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores relacionados con la impresión. Multiple vulnerabilities have been reported in Chromium and V8, some... • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html • CWE-399: Resource Management Errors •