Google Chrome Multiple Vulnerabilities - March 11 (Linux) Network Vulnerability

Summary

The host is running Google Chrome and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow attackers to execute arbitrary code in the context of the browser or cause denial-of-service condition. Impact Level: Application

Solution

Upgrade to the Google Chrome 10.0.648.204 or later, For updates refer to http://www.google.com/chrome

Insight

- A buffer overflow error in base string handling. - An use-after-free error in the frame-loader implementation. - An Use-after-free error in the HTMLCollection implementation. - An error in the processing of CSS which leaves stale pointers behind. - An unspecified error related to broken node-hierarchy which leads to DOM tree corruption. - An error in the processing of SVG text which leaves stale pointers behind.

Affected

Google Chrome version prior to 10.0.648.204 on Linux

References

http://googlechromereleases.blogspot.com/2011/03/stable-channel-update.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-1291, CVE-2011-1292, CVE-2011-1293, CVE-2011-1294, CVE-2011-1295, CVE-2011-1296

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Google Chrome multiple vulnerabilities - March 11 (Linux)

Take action and discover your vulnerabilities