7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.832 High
EPSS
Percentile
98.5%
Versions of Google Chrome earlier than 17.0.963.56 are potentially affected by the following vulnerabilities :
Integer overflow errors exist related to PDF codecs and libpng. (CVE-2011-3015, CVE-2011-3026)
A read-after-free error exists related to ‘counter nodes’. (CVE-2011-3016)
Use-after-free errors exist related to database handling, subframe loading, and ddrag-and-drop functionality. (CVE-2011-3017, CVE-2011-3021, CVE-2011-3023)
Heap-overflow errors exist related to path rendering and ‘MKV’ handling. (CVE-2011-3018, CVE-2011-3019)
Unspecified errors exist related to the native client validator and HTTP use with translation scripts. (CVE-2011-3020, CVE-2011-3022)
Empty x509 certificates can cause browser crashes. (CVE-2011-3024)
An out-of-bounds read error exists related to h.264 parsing. (CVE-2011-3025)
A bad variable cast exists related to column handling. (CVE-2011-3027)
Binary data 800966.prm
googlechromereleases.blogspot.com/2012/02/chrome-stable-update.html
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3015
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3016
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3017
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3018
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3019
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3020
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3021
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3022
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3023
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3024
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3025
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3026
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3027