Google Chrome MIDI Subsystem Application Crash Vulnerabilities (CVE-2015-6792)
Affected Systems:
Google Chrome <47.0.2526.106
Description:
CVE (CAN) ID: CVE-2015-6792
Google Chrome is a Web browser tool developed by Google.
In versions earlier than Google Chrome 47.0.2526.106, the MIDI subsystem does not properly process data sending. Remote attackers can exploit this vulnerability to cause DoS or execute arbitrary code.
<* Source: Google
*>
Suggestion:
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html
Https://codereview.chromium.org/1500153002
Https://code.google.com/p/chromium/issues/detail? Id = 564501
Https://code.google.com/p/chromium/issues/detail? Id = 569486
Https://codereview.chromium.org/1508563003