Google Blink vulnerabilities

CVE-2011-2335 [HIGH] CWE-415 CVE-2011-2335: A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSe A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSelector function.

CVE-2011-1802 [MEDIUM] CWE-476 CVE-2011-1802: WebKit in Google Chrome before Blink M11 and M12 does not properly handle counter nodes, which allow WebKit in Google Chrome before Blink M11 and M12 does not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory corruption).

CVE-2011-2334 [MEDIUM] CWE-416 CVE-2011-2334: Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen r Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections.

CVE-2011-1803 [MEDIUM] CWE-415 CVE-2011-1803: An issue exists in third_party/WebKit/Source/WebCore/svg/animation/SVGSMILElement.h in WebKit in Goo An issue exists in third_party/WebKit/Source/WebCore/svg/animation/SVGSMILElement.h in WebKit in Google Chrome before Blink M11 and M12 when trying to access a removed smil element.

CVE-2011-2337 [CRITICAL] CWE-704 CVE-2011-2337: A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 6 A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms.

CVE-2011-2353 [MEDIUM] CWE-416 CVE-2011-2353: Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in Docume Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function.

CVE-2011-2807 [MEDIUM] CWE-755 CVE-2011-2807: Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink M13. Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink M13.

CVE-2011-2336 [MEDIUM] CWE-755 CVE-2011-2336: An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControl An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation starts.

CVE-2011-1298 [HIGH] CWE-190 CVE-2011-1298: An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore::Graphic An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore::GraphicsContext::fillRect function.

CVE-2011-2808 [MEDIUM] CWE-20 CVE-2011-2808: A stale layout root is set as an input element in WebKit in Google Chrome before Blink M13 when a ch A stale layout root is set as an input element in WebKit in Google Chrome before Blink M13 when a child of a keygen with autofocus is accessed.

CVE-2011-1460 [CRITICAL] CWE-704 CVE-2011-1460: WebKit in Google Chrome before Blink M11 contains a bad cast to RenderBlock when anonymous blocks ar WebKit in Google Chrome before Blink M11 contains a bad cast to RenderBlock when anonymous blocks are renderblocks.

CVE-2011-1459 [MEDIUM] CWE-400 CVE-2011-1459: The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via the htmlpluginelement.cpp plugin.