525 matches found
[SECURITY] [DSA 2785-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2785-1 [email protected] http://www.debian.org/security/ Michael Gilbert October 26, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2785-1 (chromium-browser - several vulnerabilities)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-2906 Atte Kettunen of OUSPG discovered race conditions in Web Audio. CVE-2013-2907 Boris Zbarsky discovered an out-of-bounds read in window.prototype. CVE-2013-2908 Chamal de Silva discovered an address bar spoofin...
DSA-2785-1 chromium-browser - several
Bulletin has no description...
CVE-2013-2910
Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...
CVE-2013-2917
The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to the...
CVE-2013-2906
Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...
Design/Logic Flaw
Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...
Out-of-bounds
The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to the...
Race condition
Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...
CVE-2013-2910
Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...
CVE-2013-2906
Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...
CVE-2013-2906
CVE-2013-2906 involves race conditions in the Web Audio implementation (Blink) used by Google Chrome and Chromium up to version 30.0.1599.66. Exploitation could lead to denial of service or other impact; multiple vendor advisories list this fix as part of the Chrome/Chromium security updates. Aff...
CVE-2013-2917
The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to the...
CVE-2013-2917
Removed by vendor...
CVE-2013-2910
CVE-2013-2910 is a use-after-free in Web Audio (AudioScheduledSourceNode.cpp) within Blink’s Web Audio implementation used by Chrome pre-30.0.1599.66. The vulnerability could allow a remote attacker to cause a denial of service or other unspecified impact via unknown vectors. Public documents in ...
CVE-2013-2917
CVE-2013-2917 concerns the Chromium/Blink Web Audio implementation. The ReverbConvolverStage used in core/platform/audio/ReverbConvolverStage.cpp contains an out-of-bounds read in the impulseResponse array, enabling a remote attacker to trigger a denial of service. Affected product/version lineag...
CVE-2013-2906
Removed by vendor...
CVE-2013-2910
Removed by vendor...
CVE-2013-2910
Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...
CVE-2013-2906
Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...