The host is installed with Google Chrome and is prone to multiple vulnerabilities.

Successful exploitation could allow attackers to inject scripts, bypass certain security restrictions, execute arbitrary code in the context of the browser or cause a denial of service. Impact Level: System/Application

Upgrade to the Google Chrome 18.0.1025.142 or later, For updates refer to http://www.google.com/chrome

The flaws are due to - An error while handling the EUC-JP encoding system, may allow cross-site scripting attacks. - An unspecified error in Skia can be exploited to corrupt memory. - A use-after-free error exists in SVG clipping. - A validation error exists within the handling of certain navigation requests from the renderer. - An off-by-one error exists in OpenType sanitizer. - An error exists within SPDY proxy certificate checking. - An error in text fragment handling can be exploited to cause an out-of-bounds read. - An error in SVG text handling can be exploited to cause an out-of-bounds read.

Google Chrome version prior to 18.0.1025.142 on Linux

• http://googlechromereleases.blogspot.in/2012/03/stable-channel-release-and-beta-channel.html
• http://secunia.com/advisories/48618/
• http://www.securitytracker.com/id/1026877

---

Updated on 2015-03-25