Google Chrome vulnerabilities

CVE-2013-2858 [HIGH] CWE-416 CVE-2013-2858: Use-after-free vulnerability in the HTML5 Audio implementation in Google Chrome before 27.0.1453.110 Use-after-free vulnerability in the HTML5 Audio implementation in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2013-2854 [HIGH] CVE-2013-2854: Google Chrome before 27.0.1453.110 on Windows provides an incorrect handle to a renderer process in Google Chrome before 27.0.1453.110 on Windows provides an incorrect handle to a renderer process in unspecified circumstances, which allows remote attackers to cause a denial of service or possibly have other impact via unknown vectors.

CVE-2013-2865 [HIGH] CVE-2013-2865: Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.110 allow attackers to cause Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.110 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

CVE-2013-2856 [HIGH] CWE-416 CVE-2013-2856: Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input.

CVE-2013-2857 [HIGH] CWE-416 CVE-2013-2857: Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of images.

CVE-2013-2864 [HIGH] CWE-119 CVE-2013-2864: The PDF functionality in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denia The PDF functionality in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via unknown vectors.

CVE-2013-2859 [HIGH] CVE-2013-2859: Google Chrome before 27.0.1453.110 allows remote attackers to bypass the Same Origin Policy and trig Google Chrome before 27.0.1453.110 allows remote attackers to bypass the Same Origin Policy and trigger namespace pollution via unspecified vectors.

CVE-2013-2861 [HIGH] CWE-399 CVE-2013-2861: Use-after-free vulnerability in the SVG implementation in Google Chrome before 27.0.1453.110 allows Use-after-free vulnerability in the SVG implementation in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2013-2860 [HIGH] CWE-416 CVE-2013-2860: Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving access to a database API by a worker process.

CVE-2013-2862 [HIGH] CWE-119 CVE-2013-2862: Skia, as used in Google Chrome before 27.0.1453.110, does not properly handle GPU acceleration, whic Skia, as used in Google Chrome before 27.0.1453.110, does not properly handle GPU acceleration, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

CVE-2013-2855 [MEDIUM] CWE-119 CVE-2013-2855: The Developer Tools API in Google Chrome before 27.0.1453.110 allows remote attackers to cause a den The Developer Tools API in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

CVE-2013-2843 [HIGH] CWE-399 CVE-2013-2843: Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of speech data.

CVE-2013-2846 [HIGH] CVE-2013-2846: Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2840.

CVE-2013-2845 [HIGH] CWE-119 CVE-2013-2845: The Web Audio implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a The Web Audio implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

CVE-2013-2842 [HIGH] CWE-399 CVE-2013-2842: Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of widgets.

CVE-2013-2837 [HIGH] CWE-399 CVE-2013-2837: Use-after-free vulnerability in the SVG implementation in Google Chrome before 27.0.1453.93 allows r Use-after-free vulnerability in the SVG implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2013-2844 [HIGH] CWE-399 CVE-2013-2844: Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome bef Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to style resolution.

CVE-2013-2839 [HIGH] CWE-399 CVE-2013-2839: Google Chrome before 27.0.1453.93 does not properly perform a cast of an unspecified variable during Google Chrome before 27.0.1453.93 does not properly perform a cast of an unspecified variable during handling of clipboard data, which allows remote attackers to cause a denial of service or possibly have other impact via unknown vectors.

CVE-2013-2840 [HIGH] CWE-399 CVE-2013-2840: Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2846.

CVE-2013-2836 [HIGH] CVE-2013-2836: Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.93 allow attackers to cause a Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453.93 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.