CVE-2012-2857
https://notcve.org/view.php?id=CVE-2012-2857
Use-after-free vulnerability in the Cascading Style Sheets (CSS) DOM implementation in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document. Vulnerabilidad de uso después de liberación (use-after-free) en las Hojas de Estilo en Cascada (CSS) en la implementación DOM Google Chrome anteriores a v21.0.1180.57 en Mac OS X y Linux, y anteriores a v21.0.1180.60 en Windows y Chrome Frame, permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de un documento manipulado. • http://code.google.com/p/chromium/issues/detail?id=136235 http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html http://lists.apple.com/archives/security-announce/2013/Jan/msg00000.html http://lists.apple.com/archives/security-announce/2013/Mar/msg00003.html http://support.apple.com/kb/HT5642 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15336 • CWE-399: Resource Management Errors •
CVE-2012-2856
https://notcve.org/view.php?id=CVE-2012-2856
The PDF functionality in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger out-of-bounds write operations. La funcionalidad PDF en Google Chrome anterior a v21.0.1180.57 en Mac OS X y Linux, y anterior a v21.0.1180.60 en Windows y Chrome Frame, permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores que causan operaciones de escritura fuera de los límites (out-of-bounds). • http://code.google.com/p/chromium/issues/detail?id=134954 http://code.google.com/p/chromium/issues/detail?id=135264 http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15053 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2012-2851
https://notcve.org/view.php?id=CVE-2012-2851
Multiple integer overflows in the PDF functionality in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document. Múltiples desbordamientos de enteros en la funcionalidad PDF en Google Chrome anterior a v21.0.1180.57 en Mac OS X y Linux, y anterior a v21.0.1180.60 en Windows y Chrome Frame, que permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de un documento manipulado. • http://code.google.com/p/chromium/issues/detail?id=132585 http://code.google.com/p/chromium/issues/detail?id=132694 http://code.google.com/p/chromium/issues/detail?id=132861 http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15705 • CWE-189: Numeric Errors •
CVE-2012-2858
https://notcve.org/view.php?id=CVE-2012-2858
Buffer overflow in the WebP decoder in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted WebP image. Desbordamiento de búfer en el decodificador WebP en Google Chrome anterior a v21.0.1180.57 en Mac OS X y Linux, y anterior a v21.0.1180.60 en Windows y Chrome Frame, permite a atacantes remotos causar una denegación de servicio o posiblemente tener un impacto no especificado a través de una imagen WebP modificada. • http://code.google.com/p/chromium/issues/detail?id=136894 http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15679 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2012-2847
https://notcve.org/view.php?id=CVE-2012-2847
Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, does not request user confirmation before continuing a large series of downloads, which allows user-assisted remote attackers to cause a denial of service (resource consumption) via a crafted web site. Google Chrome anterior a v21.0.1180.57 en Mac OS X y Linux, y anterior a v21.0.1180.60 en Windows y Chrome Frame, no pide confirmación al usuario antes de continuar con una larga serie de descargas, que permite a usuarios asistidos por atacantes remotos provocar una denegación de servicio (consumo de recursos) a través de un sitio web manipulado. • http://code.google.com/p/chromium/issues/detail?id=127522 http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15735 • CWE-399: Resource Management Errors •