Google Chrome vulnerabilities

CVE-2012-5140 [CRITICAL] CWE-416 CVE-2012-5140: Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the URL loader.

CVE-2012-5141 [CRITICAL] CVE-2012-5141: Google Chrome before 23.0.1271.97 does not properly restrict instantiation of the Chromoting client Google Chrome before 23.0.1271.97 does not properly restrict instantiation of the Chromoting client plug-in, which has unspecified impact and attack vectors.

CVE-2012-5143 [CRITICAL] CWE-190 CVE-2012-5143: Integer overflow in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of s Integer overflow in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to PPAPI image buffers.

CVE-2012-5142 [CRITICAL] CWE-94 CVE-2012-5142: Google Chrome before 23.0.1271.97 does not properly handle history navigation, which allows remote a Google Chrome before 23.0.1271.97 does not properly handle history navigation, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

CVE-2012-5144 [CRITICAL] CWE-119 CVE-2012-5144: Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not prope Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."

CVE-2012-5139 [CRITICAL] CWE-416 CVE-2012-5139: Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to visibility events.

CVE-2012-5137 [CRITICAL] CWE-416 CVE-2012-5137: Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Media Source API.

CVE-2012-5138 [CRITICAL] CVE-2012-5138: Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact and attack vectors.

CVE-2012-5129 [HIGH] CWE-119 CVE-2012-5129: Heap-based buffer overflow in the WebGL subsystem in Google Chrome OS before 23.0.1271.94 allows rem Heap-based buffer overflow in the WebGL subsystem in Google Chrome OS before 23.0.1271.94 allows remote attackers to cause a denial of service (GPU process crash) or possibly have unspecified other impact via unknown vectors.

CVE-2012-5131 [HIGH] CVE-2012-5131: Google Chrome before 23.0.1271.91 on Mac OS X does not properly mitigate improper rendering behavior Google Chrome before 23.0.1271.91 on Mac OS X does not properly mitigate improper rendering behavior in the Intel GPU driver, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CVE-2012-5135 [HIGH] CWE-399 CVE-2012-5135: Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing.

CVE-2012-5133 [HIGH] CWE-416 CVE-2012-5133: Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG filters.

CVE-2012-5130 [MEDIUM] CWE-125 CVE-2012-5130: Skia, as used in Google Chrome before 23.0.1271.91, allows remote attackers to cause a denial of ser Skia, as used in Google Chrome before 23.0.1271.91, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2012-5132 [MEDIUM] CVE-2012-5132: Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service (application Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service (application crash) via a response with chunked transfer coding.

CVE-2012-5136 [MEDIUM] CWE-20 CVE-2012-5136: Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during handling of the INPUT element, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted HTML document.

CVE-2012-5134 [MEDIUM] CWE-119 CVE-2012-5134: Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.

CVE-2012-5851 [MEDIUM] CWE-79 CVE-2012-5851: html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome through 22 and Safari 5.1. html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome through 22 and Safari 5.1.7, does not consider all possible output contexts of reflected data, which makes it easier for remote attackers to bypass a cross-site scripting (XSS) protection mechanism via a crafted string, aka rdar problem 12019108.

CVE-2012-5117 [HIGH] CWE-264 CVE-2012-5117: Google Chrome before 23.0.1271.64 does not properly restrict the loading of an SVG subresource in th Google Chrome before 23.0.1271.64 does not properly restrict the loading of an SVG subresource in the context of an IMG element, which has unspecified impact and remote attack vectors.

CVE-2012-5120 [HIGH] CWE-119 CVE-2012-5120: Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, on 64-bit Linux platforms a Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, on 64-bit Linux platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to an array.

CVE-2012-5116 [HIGH] CWE-416 CVE-2012-5116: Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of SVG filters.