Test ID:	1.3.6.1.4.1.25623.1.0.802849
Category:	Denial of Service
Title:	Google Chrome Multiple Denial of Service Vulnerabilities (May 2012) - Linux
Summary:	Google Chrome is prone to multiple denial of service vulnerabilities.
Description:	Summary: Google Chrome is prone to multiple denial of service vulnerabilities. Vulnerability Insight: The flaws are due to - Multiple use after free error exists, when handling floats. - A use after free error exists within the xml parser. - An error exists within the IPC validation. - A race condition exists within the sandbox IPC. Vulnerability Impact: Successful exploitation could allow attackers to execute arbitrary code in the context of the browser or cause a denial of service. Affected Software/OS: Google Chrome version prior to 18.0.1025.168 on Linux Solution: Upgrade to the Google Chrome 18.0.1025.168 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3078 http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html BugTraq ID: 53309 http://www.securityfocus.com/bid/53309 http://security.gentoo.org/glsa/glsa-201205-01.xml http://osvdb.org/81643 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15616 http://www.securitytracker.com/id?1027001 http://secunia.com/advisories/48992 XForce ISS Database: chrome-floats-handling-code-exec(75269) https://exchange.xforce.ibmcloud.com/vulnerabilities/75269 Common Vulnerability Exposure (CVE) ID: CVE-2011-3079 Debian Security Information: DSA-3260 (Google Search) http://www.debian.org/security/2015/dsa-3260 http://osvdb.org/81645 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14964 RedHat Security Advisories: RHSA-2015:1012 http://rhn.redhat.com/errata/RHSA-2015-1012.html SuSE Security Announcement: openSUSE-SU-2015:0892 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html SuSE Security Announcement: openSUSE-SU-2015:0934 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html SuSE Security Announcement: openSUSE-SU-2015:1266 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html XForce ISS Database: chrome-ipc-validation-code-execution(75271) https://exchange.xforce.ibmcloud.com/vulnerabilities/75271 Common Vulnerability Exposure (CVE) ID: CVE-2011-3080 http://osvdb.org/81646 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15623 XForce ISS Database: chrome-sandbox-ipc-code-exec(75272) https://exchange.xforce.ibmcloud.com/vulnerabilities/75272 Common Vulnerability Exposure (CVE) ID: CVE-2011-3081 http://osvdb.org/81647 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15592 XForce ISS Database: google-floats-handling-code-exec(75273) https://exchange.xforce.ibmcloud.com/vulnerabilities/75273 Common Vulnerability Exposure (CVE) ID: CVE-2012-1521 http://osvdb.org/81644 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15397 XForce ISS Database: chrome-xml-parser-code-exec(75270) https://exchange.xforce.ibmcloud.com/vulnerabilities/75270
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.