4 matches found
CVE-2013-2835
Google Chrome OS before 26.0.1410.57 does not properly enforce origin restrictions for the O3D and Google Talk plug-ins, which allows remote attackers to bypass the domain-whitelist protection mechanism via a crafted web site, a different vulnerability than CVE-2013-2834...
Stable Channel Update for Chrome OS
The Stable channel has been updated to 26.0.1410.57 Platform version: 3701.81.2 for all Chrome OS devices. This build contains some security improvements. Machines will be receiving updates over the next several days. Security fixes and rewards: Please see the Chromium security page for more...
Google Releases Google Chrome 26.0.1410.57
Google has released Google Chrome 26.0.1410.57 for all Chrome OS devices to address a vulnerability. This vulnerability could allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to review the Google Chrome Release blog entry and follow best-practice security...
CVE-2013-0927
Google Chrome OS before 26.0.1410.57 relies on a Pango pango-utils.c readconfig implementation that loads the contents of the .pangorc file in the user's home directory, and the file referenced by the PANGORCFILE environment variable, which allows attackers to bypass intended access restrictions...