Google Chrome buffer overflow vulnerability in CVE-2015-1360)
Release date:
Updated on:
Affected Systems:
Google Chrome <40.0.2214.91
Description:
Bugtraq id: 73077
CVE (CAN) ID: CVE-2015-1360
Google Chrome is a Web browser tool developed by Google.
In Chrome versions earlier than 40.0.2214.91, Skia has a buffer overflow vulnerability. By processing errors caused by constructed data during font drawing, remote attackers can exploit this vulnerability to cause buffer overflow and cause DOS.
<* Source: Google
*>
Suggestion:
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Https://code.google.com/p/chromium/issues/detail? Id = 416289
Http://googlechromereleases.blogspot.com/2015/01/stable-update.html
Https://codereview.chromium.org/636233008
Https://code.google.com/p/chromium/issues/detail? Id = 449894
Chrome Protocol: http://www.google.com/chrome/intl/en/eula_text.html
Install Google Chrome in Ubuntu 14.04 LTS
Solution to Chrome dependency installation in Ubuntu 13.04
Install Chrome in openSUSE
Install Google Chrome 35 Beta for Linux Users
Install Google Chrome in CentOS 6.x
Chrome details: click here
Chrome: click here
This article permanently updates the link address: