CVE-2013-2901
https://notcve.org/view.php?id=CVE-2013-2901
Multiple integer overflows in (1) libGLESv2/renderer/Renderer9.cpp and (2) libGLESv2/renderer/Renderer11.cpp in Almost Native Graphics Layer Engine (ANGLE), as used in Google Chrome before 29.0.1547.57, allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. Múltiples desbordamientos de enteros en (1) libGLESv2/renderer/Renderer9.cpp y (2) libGLESv2/renderer/Renderer11.cpp ien Almost Native Graphics Layer Engine (ANGLE), como es usado en Google Chrome anterior a v29.0.1547.57, permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores desconocidos. • http://code.google.com/p/angleproject/issues/detail?id=444 http://crbug.com/257363 http://googlechromereleases.blogspot.com/2013/08/stable-channel-update.html http://www.debian.org/security/2013/dsa-2741 https://chromium.googlesource.com/external/angle/+/chrome_m29 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18508 • CWE-189: Numeric Errors •
CVE-2013-2900
https://notcve.org/view.php?id=CVE-2013-2900
The FilePath::ReferencesParent function in files/file_path.cc in Google Chrome before 29.0.1547.57 on Windows does not properly handle pathname components composed entirely of . (dot) and whitespace characters, which allows remote attackers to conduct directory traversal attacks via a crafted directory name. La funcion FilePath::ReferencesParent en files/file_path.cc en Google Chrome anterior a v29.0.1547.57 en Windows no maneja adecuadamente las rutas de los componentes compuestos en su totalidad de. (punto) y espacios en blanco, lo que permite a atacantes remotos realizar ataques transversales de directorio a través de un nombre de directorio manipulado. • http://crbug.com/181617 http://googlechromereleases.blogspot.com/2013/08/stable-channel-update.html http://www.debian.org/security/2013/dsa-2741 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18381 https://src.chromium.org/viewvc/chrome?revision=200603&view=revision • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2013-2905
https://notcve.org/view.php?id=CVE-2013-2905
The SharedMemory::Create function in memory/shared_memory_posix.cc in Google Chrome before 29.0.1547.57 uses weak permissions under /dev/shm/, which allows attackers to obtain sensitive information via direct access to a POSIX shared-memory file. La función SharedMemory::Create en memory/shared_memory_posix.cc en Google Chrome anterior a v29.0.1547.57 utiliza permisos débiles en /dev/shm/, lo que permite a atacantes obtener información sensible a través de un acceso directo a un fichero POSIX de memoria compartida. • http://crbug.com/254159 http://googlechromereleases.blogspot.com/2013/08/stable-channel-update.html http://www.debian.org/security/2013/dsa-2741 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17583 https://src.chromium.org/viewvc/chrome?revision=209814&view=revision • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2013-2903
https://notcve.org/view.php?id=CVE-2013-2903
Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocument function in core/html/HTMLMediaElement.cpp in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving moving a (1) AUDIO or (2) VIDEO element between documents. Vulnerabilidad de uso después de liberación en la función HTMLMediaElement::didMoveToNewDocument en core/html/HTMLMediaElement.cpp en Blink, como es usado en Google Chrome anterior a v29.0.1547.57 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores relacionados con mover elementos (1) AUDIO o (2) VIDEO entre documentos. • http://crbug.com/260156 http://googlechromereleases.blogspot.com/2013/08/stable-channel-update.html http://www.debian.org/security/2013/dsa-2741 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17571 https://src.chromium.org/viewvc/blink?revision=154696&view=revision • CWE-399: Resource Management Errors •
CVE-2013-2883
https://notcve.org/view.php?id=CVE-2013-2883
Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to deleting the registration of a MutationObserver object. Vulnerabilidad de uso después de liberación en Google Chrome anterior a 28.0.1500.95, permite a atacantes remotos provocar una denegación de servicio y causar otro tipo de impacto a través de vectores relacionados con la eliminación del registro de un objeto MutationObserver. • http://googlechromereleases.blogspot.com/2013/07/stable-channel-update_30.html http://www.debian.org/security/2013/dsa-2732 https://code.google.com/p/chromium/issues/detail?id=260165 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17525 https://src.chromium.org/viewvc/blink?revision=154264&view=revision • CWE-399: Resource Management Errors •