Release date: 2012-03-21
Updated on: 2012-03-23
Affected Systems:
Google Chrome <17.0.963.83
Description:
--------------------------------------------------------------------------------
Bugtraq id: 52674
Cve id: CVE-2011-3050, CVE-2011-3051, CVE-2011-3053, CVE-2011-3054, CVE-2011-3055, CVE-2011-3056
Google Chrome is a simple and efficient Web browser tool developed by Google.
Google Chrome versions earlier than 17.0.963.83 have multiple security vulnerabilities. Attackers can exploit this vulnerability to bypass certain security restrictions and control user systems.
1) there is an error of reuse after releasing the first letter;
2) The libpng binding version has an error;
3) There is an error of reuse after the CSS cross fade-in and fade-out is released;
4) An error occurred while processing the WebGL canvas;
5) there is a release reuse error during block splitting;
6) The local UI has a vulnerability when the package extension is installed;
7) when processing some iframes, there is an error in the Cross-source policy;
8) An invalid reading error exists in v8.
<* Source: miaubiz
Link: http://secunia.com/advisories/48512/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.google.com