Multiple integer overflows in Skia, as used in Google Chrome 1.x before 1.0.154.64 and 2.x, and possibly Android, might allow remote attackers to execute arbitrary code in the renderer process via a crafted (1) image or (2) canvas.
CPE | Name | Operator | Version |
---|---|---|---|
chrome | eq | 0.3.154.3 | |
chrome | eq | 0.2.149.30 | |
chrome | eq | 0.4.154.31 | |
chrome | eq | 1.0.154.39 | |
chrome | eq | 1.0.154.59 | |
chrome | eq | 0.4.154.33 | |
chrome | eq | 1.0.154.43 | |
chrome | eq | 1.0.154.42 | |
chrome | eq | 2.0.157.2 | |
chrome | eq | 0.4.154.18 |
osvdb.org/54248
secunia.com/advisories/35014
www.securityfocus.com/bid/34859
www.securitytracker.com/id?1022175
www.vupen.com/english/advisories/2009/1266
code.google.com/p/chromium/issues/detail?id=10736
code.google.com/p/skia/source/detail?r=159
googlechromereleases.blogspot.com/2009/05/stable-update-security-fix.html