SB2013071002 - Multiple vulnerabilities in Techland Chrome
Published: July 10, 2013 Updated: January 25, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Buffer overflow (CVE-ID: CVE-2013-2875)
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
core/rendering/svg/SVGInlineTextBox.cpp in the SVG implementation in Blink, as used in Google Chrome before 28.0.1500.71, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
2) Input validation error (CVE-ID: CVE-2013-2880)
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Multiple unspecified vulnerabilities in Google Chrome before 28.0.1500.71 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
3) Input validation error (CVE-ID: CVE-2013-2853)
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
The HTTPS implementation in Google Chrome before 28.0.1500.71 does not ensure that headers are terminated by (carriage return, newline, carriage return, newline), which allows man-in-the-middle attackers to have an unspecified impact via vectors that trigger header truncation.
4) Use-after-free (CVE-ID: CVE-2013-2871)
The vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error when processing vectors related to the handling of input. A remote attackers can cause a denial of service or possibly have unspecified other impact.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
Remediation
Install update from vendor's website.
References
- http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html
- http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html
- http://archives.neohapsis.com/archives/bugtraq/2014-06/0175.html
- http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html
- http://src.chromium.org/viewvc/blink?revision=150456&view=revision
- http://support.apple.com/kb/HT6254
- http://www.debian.org/security/2013/dsa-2724
- https://code.google.com/p/chromium/issues/detail?id=233848
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17227
- https://support.apple.com/kb/HT6537
- https://code.google.com/p/chromium/issues/detail?id=160450
- https://code.google.com/p/chromium/issues/detail?id=167924
- https://code.google.com/p/chromium/issues/detail?id=173688
- https://code.google.com/p/chromium/issues/detail?id=176027
- https://code.google.com/p/chromium/issues/detail?id=176676
- https://code.google.com/p/chromium/issues/detail?id=177215
- https://code.google.com/p/chromium/issues/detail?id=177688
- https://code.google.com/p/chromium/issues/detail?id=178264
- https://code.google.com/p/chromium/issues/detail?id=178266
- https://code.google.com/p/chromium/issues/detail?id=179653
- https://code.google.com/p/chromium/issues/detail?id=187243
- https://code.google.com/p/chromium/issues/detail?id=189084
- https://code.google.com/p/chromium/issues/detail?id=189090
- https://code.google.com/p/chromium/issues/detail?id=196570
- https://code.google.com/p/chromium/issues/detail?id=222852
- https://code.google.com/p/chromium/issues/detail?id=223482
- https://code.google.com/p/chromium/issues/detail?id=223772
- https://code.google.com/p/chromium/issues/detail?id=225798
- https://code.google.com/p/chromium/issues/detail?id=226091
- https://code.google.com/p/chromium/issues/detail?id=227157
- https://code.google.com/p/chromium/issues/detail?id=230726
- https://code.google.com/p/chromium/issues/detail?id=235732
- https://code.google.com/p/chromium/issues/detail?id=236269
- https://code.google.com/p/chromium/issues/detail?id=236556
- https://code.google.com/p/chromium/issues/detail?id=236845
- https://code.google.com/p/chromium/issues/detail?id=237263
- https://code.google.com/p/chromium/issues/detail?id=239411
- https://code.google.com/p/chromium/issues/detail?id=240055
- https://code.google.com/p/chromium/issues/detail?id=240449
- https://code.google.com/p/chromium/issues/detail?id=240961
- https://code.google.com/p/chromium/issues/detail?id=242023
- https://code.google.com/p/chromium/issues/detail?id=242786
- https://code.google.com/p/chromium/issues/detail?id=242931
- https://code.google.com/p/chromium/issues/detail?id=243045
- https://code.google.com/p/chromium/issues/detail?id=243875
- https://code.google.com/p/chromium/issues/detail?id=243881
- https://code.google.com/p/chromium/issues/detail?id=246240
- https://code.google.com/p/chromium/issues/detail?id=256985
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17281
- http://git.chromium.org/gitweb/?p=chromium/chromium.git;a=commit;h=44b400c80726ee5d205a27730a0c846be656a071
- http://git.chromium.org/gitweb/?p=chromium/chromium.git;a=commit;h=f4f9f4948de5a59462e13ad712d7d9117238aeea
- https://code.google.com/p/chromium/issues/detail?id=244260
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17033
- http://archives.neohapsis.com/archives/bugtraq/2014-04/0009.html
- http://archives.neohapsis.com/archives/bugtraq/2014-04/0135.html
- http://archives.neohapsis.com/archives/bugtraq/2014-04/0136.html
- https://code.google.com/p/chromium/issues/detail?id=243818
- https://code.google.com/p/chromium/issues/detail?id=243991
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17275