CVE-2011-0984
|
Google Chrome before 9.0.597.94 does not properly handle plug-ins, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Published:
February 10, 2011; 02:00:02 PM -05:00
|
V2: 5.0 MEDIUM
|
CVE-2011-0983
|
Google Chrome before 9.0.597.94 does not properly handle anonymous blocks, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
Published:
February 10, 2011; 02:00:02 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0982
|
Use-after-free vulnerability in Google Chrome before 9.0.597.94 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG font faces.
Published:
February 10, 2011; 02:00:02 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0981
|
Google Chrome before 9.0.597.94 does not properly perform event handling for animations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
Published:
February 10, 2011; 02:00:02 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0784
|
Race condition in Google Chrome before 9.0.597.84 allows remote attackers to execute arbitrary code via vectors related to audio.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 9.3 HIGH
|
CVE-2011-0783
|
Unspecified vulnerability in Google Chrome before 9.0.597.84 allows user-assisted remote attackers to cause a denial of service (application crash) via vectors involving a "bad volume setting."
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 4.3 MEDIUM
|
CVE-2011-0782
|
Google Chrome before 9.0.597.84 on Mac OS X does not properly mitigate an unspecified flaw in the Mac OS X 10.5 SSL libraries, which allows remote attackers to cause a denial of service (application crash) via unknown vectors.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 5.0 MEDIUM
|
CVE-2011-0781
|
Google Chrome before 9.0.597.84 does not properly handle autofill profile merging, which has unspecified impact and remote attack vectors.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 7.5 HIGH
|
CVE-2011-0780
|
The PDF event handler in Google Chrome before 9.0.597.84 does not properly interact with print operations, which allows user-assisted remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 9.3 HIGH
|
CVE-2011-0779
|
Google Chrome before 9.0.597.84 does not properly handle a missing key in an extension, which allows remote attackers to cause a denial of service (application crash) via a crafted extension.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 5.0 MEDIUM
|
CVE-2011-0778
|
Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 7.5 HIGH
|
CVE-2011-0777
|
Use-after-free vulnerability in Google Chrome before 9.0.597.84 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to image loading.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0776
|
The sandbox implementation in Google Chrome before 9.0.597.84 on Mac OS X might allow remote attackers to obtain potentially sensitive information about local files via vectors related to the stat system call.
Published:
February 04, 2011; 01:00:03 PM -05:00
|
V2: 5.0 MEDIUM
|
CVE-2011-0485
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle speech data, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "stale pointer."
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0484
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale rendering node."
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0483
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of video, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 10.0 HIGH
|
CVE-2011-0482
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of anchors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted HTML document.
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 9.3 HIGH
|
CVE-2011-0481
|
Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PDF shading.
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 9.3 HIGH
|
CVE-2011-0480
|
Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted WebM file, related to buffers for (1) the channel floor and (2) the channel residue.
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 9.3 HIGH
|
CVE-2011-0479
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly interact with extensions, which allows remote attackers to cause a denial of service via a crafted extension that triggers an uninitialized pointer.
Published:
January 14, 2011; 12:00:03 PM -05:00
|
V2: 5.0 MEDIUM
|