Multiple vulnerabilities in Techland Chrome
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 8 |
| CVE-ID | CVE-2011-2821 CVE-2011-2823 CVE-2011-2824 CVE-2011-2825 CVE-2011-2826 CVE-2011-2827 CVE-2011-2828 CVE-2011-2829 |
| CWE-ID | CWE-415 CWE-416 CWE-20 CWE-787 CWE-190 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Google Chrome Client/Desktop applications / Web browsers |
| Vendor |
Security Bulletin
This security bulletin contains information about 8 vulnerabilities.
1) Double Free
EUVDB-ID: #VU44771
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2821
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted XPath expression.
MitigationInstall update from vendor's website.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=89402
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
http://rhn.redhat.com/errata/RHSA-2013-0217.html
http://support.apple.com/kb/HT5281
http://support.apple.com/kb/HT5503
http://www.debian.org/security/2012/dsa-2394
http://www.mandriva.com/security/advisories?name=MDVSA-2011:145
http://www.redhat.com/support/errata/RHSA-2011-1749.html
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13840
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Use-after-free
EUVDB-ID: #VU44772
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2823
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when processing vectors involving a line box. A remote attackers can cause a denial of service or possibly have unspecified other impact.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate to version 13.0.782.215.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=82552
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html
http://support.apple.com/kb/HT4981
http://support.apple.com/kb/HT4999
http://support.apple.com/kb/HT5000
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13789
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Use-after-free
EUVDB-ID: #VU44773
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2824
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when processing vectors involving counter nodes. A remote attackers can cause a denial of service or possibly have unspecified other impact.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate to version 13.0.782.215.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=88216
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14585
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Use-after-free
EUVDB-ID: #VU44774
Risk: High
CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2825
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when processing vectors involving custom fonts. A remote attackers can cause a denial of service or possibly have unspecified other impact.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate to version 13.0.782.215.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=88670
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00000.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Mar/msg00003.html
http://secunia.com/advisories/48274
http://secunia.com/advisories/48288
http://secunia.com/advisories/48377
http://www.securitytracker.com/id?1026774
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14421
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Input validation error
EUVDB-ID: #VU44775
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2826
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vectors related to empty origins.
MitigationInstall update from vendor's website.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=89453
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14383
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Use-after-free
EUVDB-ID: #VU44776
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2827
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when processing vectors related to text searching. A remote attackers can cause a denial of service or possibly have unspecified other impact.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationUpdate to version 13.0.782.215.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=90668
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00004.html
http://support.apple.com/kb/HT4981
http://support.apple.com/kb/HT4999
http://support.apple.com/kb/HT5000
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14134
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Out-of-bounds write
EUVDB-ID: #VU44777
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2828
CWE-ID:
CWE-787 - Out-of-bounds write
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Google V8, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
MitigationInstall update from vendor's website.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=91517
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14265
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Integer overflow
EUVDB-ID: #VU44778
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2011-2829
CWE-ID:
CWE-190 - Integer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Integer overflow in Google Chrome before 13.0.782.215 on 32-bit platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving uniform arrays.
MitigationInstall update from vendor's website.
Vulnerable software versionsGoogle Chrome: 13.0.782.0 - 13.0.782.214
CPE2.3- cpe:2.3:a:google:google_chrome:13.0.782.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.1:*:*:*:*:*:*:*
- cpe:2.3:a:google:google_chrome:13.0.782.3:*:*:*:*:*:*:*
http://code.google.com/p/chromium/issues/detail?id=91598
http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html
http://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14516
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to visit a specially crafted website.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
