CVE-2015-1360
https://notcve.org/view.php?id=CVE-2015-1360
Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted data that is improperly handled during text drawing, related to gpu/GrBitmapTextContext.cpp and gpu/GrDistanceFieldTextContext.cpp, a different vulnerability than CVE-2015-1205. Skia, utilizado en Google Chrome anterior a 40.0.2214.91, permite a atacantes remotos causar una denegación de servicio (sobre lectura de buffer) o posiblemente tener otro impacto no especificado a través de datos manipulados que no se manejan correctamente durante dibujado de textos, relacionado con gpu/GrBitmapTextContext.cpp y gpu/GrDistanceFieldTextContext.cpp, una vulnerabilidad diferente a 2015-1205. • http://googlechromereleases.blogspot.com/2015/01/stable-update.html http://security.gentoo.org/glsa/glsa-201502-13.xml https://code.google.com/p/chromium/issues/detail?id=416289 https://code.google.com/p/chromium/issues/detail?id=449894 https://codereview.chromium.org/636233008 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2014-9648
https://notcve.org/view.php?id=CVE-2014-9648
components/navigation_interception/intercept_navigation_resource_throttle.cc in Google Chrome before 40.0.2214.91 on Android does not properly restrict use of intent: URLs to open an application after navigation to a web site, which allows remote attackers to cause a denial of service (loss of browser access to that site) via crafted JavaScript code, as demonstrated by pandora.com and the Pandora application, a different vulnerability than CVE-2015-1205. components/navigation_interception/intercept_navigation_resource_throttle.cc en Google Chrome anterior a 40.0.2214.91 en Android no restringe correctamente el uso de las URLs intent: para abrir una aplicación después de la navigación a un sitio web, lo que permite a atacantes remotos causar una denegación de servicio (perdida del acceso del navegador a este sitio) a través de código JavaScript manipulado, tal y como fue demostrado por pandora.com y la aplicación Pandora, una vulnerabilidad diferente a CVE-2015-1205. • http://googlechromereleases.blogspot.com/2015/01/stable-update.html http://security.gentoo.org/glsa/glsa-201502-13.xml https://code.google.com/p/chromium/issues/detail?id=331571 https://code.google.com/p/chromium/issues/detail?id=449894 • CWE-284: Improper Access Control •
CVE-2015-1361
https://notcve.org/view.php?id=CVE-2015-1361
platform/image-decoders/ImageFrame.h in Blink, as used in Google Chrome before 40.0.2214.91, does not initialize a variable that is used in calls to the Skia SkBitmap::setAlphaType function, which might allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document, a different vulnerability than CVE-2015-1205. platform/image-decoders/ImageFrame.h en Blink, utilizado en Google Chrome anterior a 40.0.2214.91, no inicializa una variable que se utiliza en llamadas a la función Skia SkBitmap::setAlphaType, lo que podría permitir a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado a través de un documento HTML manipulado, una vulnerabilidad diferente a CVE-2015-1205. • http://googlechromereleases.blogspot.com/2015/01/stable-update.html http://security.gentoo.org/glsa/glsa-201502-13.xml http://src.chromium.org/viewvc/blink?view=revision&revision=183296 https://code.google.com/p/chromium/issues/detail?id=411329 https://code.google.com/p/chromium/issues/detail?id=449894 • CWE-17: DEPRECATED: Code •
CVE-2014-7946 – chromium-browser: out-of-bounds read in Fonts
https://notcve.org/view.php?id=CVE-2014-7946
The RenderTable::simplifiedNormalFlowLayout function in core/rendering/RenderTable.cpp in Blink, as used in Google Chrome before 40.0.2214.91, skips captions during table layout in certain situations, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors related to the Fonts implementation. La función RenderTable::simplifiedNormalFlowLayout en core/rendering/RenderTable.cpp en Blink, usado en Google Chrome anterior a 40.0.2214.91, en ciertas situaciones, se salta los subtítulos durante el diseño de tabla, lo que permite a atacantes remotos causar una denegación de servicio (lectura fuera de rango) a través de vectores no especificados en la implementación Fonts. • http://googlechromereleases.blogspot.com/2015/01/stable-update.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html http://rhn.redhat.com/errata/RHSA-2015-0093.html http://secunia.com/advisories/62383 http://secunia.com/advisories/62575 http://secunia.com/advisories/62665 http://security.gentoo.org/glsa/glsa-201502-13.xml http://www.securityfocus.com/bid/72288 http://www.securitytracker.com/id/1031623 http://www.ubuntu.com/usn/USN-2476-1 https:/& • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVE-2014-7929 – chromium-browser: use-after-free in DOM
https://notcve.org/view.php?id=CVE-2014-7929
Use-after-free vulnerability in the HTMLScriptElement::didMoveToNewDocument function in core/html/HTMLScriptElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving movement of a SCRIPT element across documents. Vulnerabilidad de uso después de liberación en la función HTMLScriptElement::didMoveToNewDocument en core/html/HTMLScriptElement.cpp en la implementación DOM en Blink, utilizado en Google Chrome anterior a 40.0.2214.91, permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores que involucran el movimiento de un elemento SCRIPT de documento en documento. • http://googlechromereleases.blogspot.com/2015/01/stable-update.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html http://rhn.redhat.com/errata/RHSA-2015-0093.html http://secunia.com/advisories/62383 http://secunia.com/advisories/62575 http://secunia.com/advisories/62665 http://security.gentoo.org/glsa/glsa-201502-13.xml http://www.securityfocus.com/bid/72288 http://www.securitytracker.com/id/1031623 http://www.ubuntu.com/usn/USN-2476-1 https:/& • CWE-17: DEPRECATED: Code CWE-416: Use After Free •