26 matches found
CVE-2011-0480
CVE-2011-0480 involves FFmpeg’s Vorbis decoder (libavcodec/vorbis_dec.c) with multiple buffer overflows that can be triggered by a crafted WebM file, leading to memory corruption and possible denial of service or other impact. The vulnerability affects FFmpeg as used in browsers (e.g., Chrome pri...
CVE-2010-4577
CVE-2010-4577 affects WebKit/WebKitGTK+ in the CSSParser::parseFontFaceSrc path, enabling an out-of-bounds read and denial of service via a crafted local font. Affected products include WebKit-based browsers (e.g., Google Chrome before 8.0.552.224; webkitgtk before 1.2.6). Remediation noted acros...
CVE-2017-15400
CVE-2017-15400 affects CUPS in Google Chrome OS before 62.0.3202.74, where insufficient restriction of IPP filters via a crafted PPD file allows a remote attacker to execute commands with the cups daemon privileges. Impact is remote command execution with the cups daemon’s privileges. Remediation...
CVE-2010-4578
CVE-2010-4578 affects Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343. The issue is due to improper cursor handling that can lead to stale pointers, enabling remote attackers to cause a denial of service and possibly other unspecified impact via unknown vectors. Exploitation det...
CVE-2011-0482
CVE-2011-0482 affects Google Chrome (before 8.0.552.237) and Chrome OS (before 8.0.552.344). The vulnerability arises from improper casting of an unspecified variable during handling of anchors in HTML, enabling a remote attacker to cause a denial of service and potentially other impacts. Multipl...
CVE-2011-0472
CVE-2011-0472 affects Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344. The issue is improper handling of printing PDF documents, allowing user‑assisted remote attackers to cause a denial of service (application crash) via a multi‑page document. The connected documents do not pro...
CVE-2017-15397
CVE-2017-15397 describes an issue in Google Chrome OS where the ChromeVox component allowed a remote attacker, positioned on the network, to observe or tamper with plaintext HTTP requests. Root cause is an inappropriate implementation within ChromeVox that mishandled plaintext network traffic. Th...
CVE-2011-0471
CVE-2011-0471 relates to Google Chrome and Chrome OS where the node-iteration implementation mishandles pointers, allowing remote denial of service and possibly other unspecified impacts. Affected versions are Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344. The issue stems from improp...
CVE-2016-5179
Chrome OS before 53.0.2785.144 is affected by CVE-2016-5179, with root cause described as incorrect validation of writes to paths on the stateful partition. The vulnerability allows remote code execution at boot and is rated CRITICAL (CVSS v3 base score 9.8). The mitigation is to upgrade to Chrom...
CVE-2011-0483
CVE-2011-0483 affects Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, where a cast of an unspecified variable during video handling could allow remote denial of service and possibly other impact via unknown vectors. The vulnerability is documented across multiple feeds (NVD and...
CVE-2017-5084
CVE-2017-5084 detail (Google Chrome OS): In Chrome OS, the image-burner component exposed a BurnImage D-Bus endpoint with an inappropriate implementation, enabling a local attacker to read local files via dbus-send commands. Affected: Chrome OS builds prior to 59.0.3071.92. Impact is local inform...
CVE-2010-4575
CVE-2010-4575 affects Google Chrome (before 8.0.552.224) and Chrome OS (before 8.0.552.343). The issue is in ThemeInstalledInfoBarDelegate::Observe, where incorrect tab interaction by an extension is not handled properly, enabling user-assisted remote attackers to cause a denial of service (appli...
CVE-2019-16508
The CVE-2019-16508 entry affects the Google Chrome OS Imagination Technologies driver. Affected chromeos builds have the Imagination driver before R74-11895.B, R75 before R75-12105.B, and R76 before R76-12208.0.0. The root cause is an integer overflow arising from granted access for the GPU proce...
CVE-2010-4576
CVE-2010-4576 affects Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343. The issue lies in browser/worker_host/message_port_dispatcher.cc where certain postMessage calls with web workers are mishandled, enabling remote attackers to trigger a NULL pointer dereference and crash the ...
CVE-2011-0479
Google Chrome (Windows/Linux/macOS) before 8.0.552.237 and Chrome OS before 8.0.552.344 are affected by CVE-2011-0479, a vulnerability in extensions handling that allows remote attackers to cause a denial of service via a crafted extension that triggers an uninitialized pointer. The issue stems f...
CVE-2010-4574
CVE-2010-4574 affects Google Chrome (before 8.0.552.224) and Chrome OS (before 8.0.552.343) on 64-bit Linux. The vulnerability lies in Pickle::Pickle (base/pickle.cc), where incorrect pointer arithmetic can bypass message deserialization validation, enabling remote input to cause denial of servic...
CVE-2011-0470
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 are affected by a vulnerability in handling extensions notifications that can be exploited to crash the application (denial of service). The provided documents state the issue but do not give explicit exploitation details or a conf...
CVE-2011-0478
Google Chrome/CromeOS vulnerability CVE-2011-0478 affects Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, due to improper handling of SVG use elements. This can cause denial of service and possibly unspecified other impact via unknown vectors that lead to a stale pointer. The issue is...
CVE-2011-0484
CVE-2011-0484 affects Google Chrome (before 8.0.552.237) and Chrome OS (before 8.0.552.344). The issue arises from improper DOM node removal, enabling denial of service or unspecified impact via a stale rendering node. NVD assigns a base score of 7.5 ( HIGH ) with network/low complexity exploit c...
CVE-2011-0474
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 are affected by a flaw in handling CSS token sequences with cursors that can lead to a denial of service and possibly other impact via unknown vectors that produce a stale pointer. The provided documents identify the vulnerable sof...
CVE-2011-0476
CVE-2011-0476 : Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 are affected. A PDF document can trigger an out-of-memory error, causing stack memory corruption and a possible denial of service. The description is supported by multiple sources (NVD/OpenVAS entries) with a high C...
CVE-2011-0481
CVE-2011-0481 : Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly other impact via vectors related to PDF shading. Affected software is Google Chrome and Chrome OS (versions cited in the entry). Th...
CVE-2011-0475
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 are affected by a use-after-free vulnerability in PDF handling, enabling remote denial of service or possibly other impact. Root cause: use-after-free in the PDF document path. Affected products/components: Google Chrome (pre-8.0.5...
CVE-2011-0477
CVE-2011-0477 affects Google Chrome (before 8.0.552.237) and Chrome OS (before 8.0.552.344). The vulnerability arises from a mismatch in video frame sizes that can cause incorrect memory access, enabling remote attackers to trigger a denial of service and potentially other impacts via unknown vec...
CVE-2011-0485
The CVE-2011-0485 entry affects Google Chrome and Chrome OS: versions prior to 8.0.552.237 (Chrome) and 8.0.552.344 (Chrome OS) are vulnerable due to improper handling of speech data, leading to a remote code execution condition via unspecified vectors that cause a stale pointer. No explicit expl...
CVE-2011-0473
CVE-2011-0473 affects Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344; vulnerability arises from improper handling of CSS token sequences with CANVAS elements, allowing remote denial of service or possibly other impact via unknown vectors that lead to a stale pointer. Root cause...