17 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-1230
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getHiddenProperty function in bindings/core/v8/V8EventListenerList.h in Blink, as used in Google Chrome before 41.0.2272.76, has a name conflict with the...
SUSE CVE-2015-1217
The V8LazyEventListener::prepareListenerObject function in bindings/core/v8/V8LazyEventListener.cpp in the V8 bindings in Blink, as used in Google Chrome before 41.0.2272.76, does not properly compile listeners, which allows remote attackers to cause a denial of service or possibly have unspecifi...
SUSE CVE-2015-1225
PDFium, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...
Google Chrome Information Disclosure Vulnerability (CNVD-2015-01692)
Google Chrome is a simple and efficiently designed web browsing tool developed by Google. An information disclosure vulnerability exists in Google Chrome versions prior to 41.0.2272.76, which arises from the program failing to properly restrict access to high-rate accelerometer data, allowing an...
Input validation
Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 41.0.2272.76, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger extraneous change...
Google Chrome Blink Memory Misreference Vulnerability (CNVD-2015-01516)
Google Chrome is a web browsing tool developed by Google. A memory misreference vulnerability in the 'shutdown' function in the web/WebKit.cpp file of Blink used in versions prior to Google Chrome 41.0.2272.76 stems from the program failing to terminate a database thread. A remote attacker could...
Google Chrome Skia Denial of Service Vulnerability (CNVD-2015-01508)
Google Chrome is a simple and efficiently designed web browsing tool developed by Google. An integer overflow vulnerability in the SkAutoSTArray implementation in include/core/SkTemplates.h in the Skia Filter implementation used by Google Chrome prior to 41.0.2272.76 allows remote attackers to...
Google Chrome memory misreference vulnerability (CNVD-2015-01513)
Google Chrome is a web browser developed by the American company Google Google. The ServiceWorkerScriptCacheMap implementation in the file content/browser/serviceworker/serviceworkerscriptcachemap.cc in versions of Google Chrome prior to 41.0.2272.76 A memory misreference vulnerability exists. A...
Google Chrome Skia Denial of Service Vulnerability (CNVD-2015-01507)
Google Chrome is a web browsing tool developed by Google. A security vulnerability exists in the filter implementation of Skia used in versions prior to Google Chrome 41.0.2272.76. A remote attacker could exploit this vulnerability to cause a denial of service...
Google Chrome vpxdecoder Denial of Service Vulnerability
Google Chrome is a web browsing tool developed by Google. A security vulnerability exists in the 'VpxVideoDecoder::VpxDecode' function in the media/filters/vpxvideodecoder.cc file in the vpxdecoder implementation in versions of Google Chrome prior to 41.0.2272.76. ' function in the...
Google Chrome PDFium Denial of Service Vulnerability (CNVD-2015-01549)
Google Chrome is a web browsing tool developed by Google. A denial of service vulnerability exists in Google Chrome versions prior to 41.0.2272.76 using PDFium, which allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...
Google Chrome Blink Arbitrary Code Execution Vulnerability
Google Chrome is a web browsing tool developed by Google. A security vulnerability in the 'DragImage::create' function in the platform/DragImage.cpp file in Blink used in versions prior to Google Chrome 41.0.2272.76 stems from the program failing to properly initialize memory for image drawing. A...
CVE-2015-1217
The V8LazyEventListener::prepareListenerObject function in bindings/core/v8/V8LazyEventListener.cpp in the V8 bindings in Blink, as used in Google Chrome before 41.0.2272.76, does not properly compile listeners, which allows remote attackers to cause a denial of service or possibly have unspecifi...
CVE-2015-1223
Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 41.0.2272.76, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger extraneous change...
UBUNTU-CVE-2015-1215
The filters implementation in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write operation...
UBUNTU-CVE-2015-1213
The SkBitmap::ReadRawPixels function in core/SkBitmap.cpp in the filters implementation in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write operation...
Stable Channel Update
The Chrome team is delighted to announce the promotion of Chrome 41 to the stable channel for Windows, Mac and Linux. Chrome 41.0.2272.76 contains a number of fixes and improvements, including: A number of new apps/extension APIs Lots of under the hood changes for stability and performance A list...