General : Google Chrome Multiple Vulnerabilities

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.804602

Kategorie: General

Titel: Google Chrome Multiple Vulnerabilities - 01 May14 (Linux)

Zusammenfassung: The host is installed with Google Chrome and is prone to multiple;vulnerabilities.

Beschreibung: Summary:
The host is installed with Google Chrome and is prone to multiple
vulnerabilities.

Vulnerability Insight:
The flaws are due to:

- A use-after-free error in WebSockets.

- An integer overflow error in the 'CharacterData::deleteData' and
'CharacterData::replaceData' functions in dom/CharacterData.cpp.

- A use-after-free error in the 'FrameSelection::updateAppearance' function in
editing/FrameSelection.cpp related to editing.

Vulnerability Impact:
Successful exploitation will allow remote attackers to conduct a denial of
service and potentially execute arbitrary code.

Affected Software/OS:
Google Chrome version prior to 34.0.1847.137 on Linux.

Solution:
Upgrade to Google Chrome 34.0.1847.137 or later.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: BugTraq ID: 67374
BugTraq ID: 67376
BugTraq ID: 67375
Common Vulnerability Exposure (CVE) ID: CVE-2014-1740
http://www.securityfocus.com/bid/67374
Debian Security Information: DSA-2930 (Google Search)
http://www.debian.org/security/2014/dsa-2930
http://security.gentoo.org/glsa/glsa-201408-16.xml
http://www.securitytracker.com/id/1030240
http://secunia.com/advisories/59155
http://secunia.com/advisories/60372
SuSE Security Announcement: openSUSE-SU-2014:0783 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-06/msg00023.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-1741
http://www.securityfocus.com/bid/67376
Common Vulnerability Exposure (CVE) ID: CVE-2014-1742
http://www.securityfocus.com/bid/67375

Copyright Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.804602
Kategorie:	General
Titel:	Google Chrome Multiple Vulnerabilities - 01 May14 (Linux)
Zusammenfassung:	The host is installed with Google Chrome and is prone to multiple;vulnerabilities.
Beschreibung:	Summary: The host is installed with Google Chrome and is prone to multiple vulnerabilities. Vulnerability Insight: The flaws are due to: - A use-after-free error in WebSockets. - An integer overflow error in the 'CharacterData::deleteData' and 'CharacterData::replaceData' functions in dom/CharacterData.cpp. - A use-after-free error in the 'FrameSelection::updateAppearance' function in editing/FrameSelection.cpp related to editing. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct a denial of service and potentially execute arbitrary code. Affected Software/OS: Google Chrome version prior to 34.0.1847.137 on Linux. Solution: Upgrade to Google Chrome 34.0.1847.137 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	BugTraq ID: 67374 BugTraq ID: 67376 BugTraq ID: 67375 Common Vulnerability Exposure (CVE) ID: CVE-2014-1740 http://www.securityfocus.com/bid/67374 Debian Security Information: DSA-2930 (Google Search) http://www.debian.org/security/2014/dsa-2930 http://security.gentoo.org/glsa/glsa-201408-16.xml http://www.securitytracker.com/id/1030240 http://secunia.com/advisories/59155 http://secunia.com/advisories/60372 SuSE Security Announcement: openSUSE-SU-2014:0783 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-06/msg00023.html Common Vulnerability Exposure (CVE) ID: CVE-2014-1741 http://www.securityfocus.com/bid/67376 Common Vulnerability Exposure (CVE) ID: CVE-2014-1742 http://www.securityfocus.com/bid/67375
Copyright	Copyright (C) 2014 Greenbone Networks GmbH