Opensuse Security Vulnerabilities and Issues — Opensuse CVE List

Lucene search

OpensuseOpensuse

14 matches found

CVE•added 2012/09/26 10:56 a.m.•63 views

CVE-2012-2882

FFmpeg, as used in Google Chrome before 22.0.1229.79, does not properly handle OGG containers, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, related to a "wild pointer" issue.

6.8CVSS9.3AI score0.01182EPSS

CVE•added 2012/09/26 10:56 a.m.•63 views

CVE-2012-2883

Skia, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write operation, a different vulnerability than CVE-2012-2874.

7.5CVSS9.4AI score0.00887EPSS

CVE•added 2012/09/26 10:56 a.m.•63 views

CVE-2012-2884

Skia, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

5CVSS8.5AI score0.00734EPSS

CVE•added 2012/09/26 10:56 a.m.•61 views

CVE-2012-2874

7.5CVSS9.4AI score0.00887EPSS

CVE•added 2012/09/26 10:56 a.m.•61 views

CVE-2012-2879

Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service (DOM topology corruption) via a crafted document.

4.3CVSS8.5AI score0.00972EPSS

CVE•added 2012/09/26 10:56 a.m.•59 views

CVE-2012-2888

Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG text references.

7.5CVSS9.2AI score0.00887EPSS

CVE•added 2012/09/26 10:56 a.m.•58 views

CVE-2012-2876

Buffer overflow in the SSE2 optimization functionality in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

7.5CVSS9.4AI score0.00968EPSS

CVE•added 2012/09/26 10:56 a.m.•58 views

CVE-2012-2881

Google Chrome before 22.0.1229.79 does not properly handle plug-ins, which allows remote attackers to cause a denial of service (DOM tree corruption) or possibly have unspecified other impact via unknown vectors.

7.5CVSS9.4AI score0.00887EPSS

CVE•added 2012/09/26 10:56 a.m.•57 views

CVE-2012-2886

Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Google V8 bindings, aka "Universal XSS (UXSS)."

4.3CVSS7AI score0.0026EPSS

CVE•added 2012/09/26 10:56 a.m.•54 views

CVE-2012-2877

The extension system in Google Chrome before 22.0.1229.79 does not properly handle modal dialogs, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

5CVSS8.5AI score0.00887EPSS

CVE•added 2012/09/26 10:56 a.m.•51 views

CVE-2012-2885

Double free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to application exit.

7.5CVSS9.3AI score0.01382EPSS

CVE•added 2012/09/26 10:56 a.m.•50 views

CVE-2012-2880

Race condition in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the plug-in paint buffer.

7.5CVSS9.2AI score0.00688EPSS

CVE•added 2012/09/26 10:56 a.m.•50 views

CVE-2012-2887

Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving onclick events.

7.5CVSS9.3AI score0.0288EPSS

CVE•added 2012/09/26 10:56 a.m.•49 views

CVE-2012-2878

Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to plug-in handling.

7.5CVSS9.2AI score0.00887EPSS