rpm package
opensuse/chromium&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweed
Vulnerabilities (4,053)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-3196 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | base/memory/shared_memory_win.cc in Google Chrome before 38.0.2125.101 on Windows does not properly implement read-only restrictions on shared memory, which allows attackers to bypass a sandbox protection mechanism via unspecified vectors. | ||
| CVE-2014-3195 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | Google V8, as used in Google Chrome before 38.0.2125.101, does not properly track JavaScript heap-memory allocations as allocations of uninitialized memory and does not properly concatenate arrays of double-precision floating-point numbers, which allows remote attackers to obtain | ||
| CVE-2014-3194 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | Use-after-free vulnerability in the Web Workers implementation in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | ||
| CVE-2014-3193 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | The SessionService::GetLastSession function in browser/sessions/session_service.cc in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via vectors that leverage "type confusion" for | ||
| CVE-2014-3192 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unsp | ||
| CVE-2014-3191 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | Use-after-free vulnerability in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers a widget-position update that improperly interacts with t | ||
| CVE-2014-3190 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | Use-after-free vulnerability in the Event::currentTarget function in core/events/Event.cpp in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaS | ||
| CVE-2014-3189 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | The chrome_pdf::CopyImage function in pdf/draw_utils.cc in the PDFium component in Google Chrome before 38.0.2125.101 does not properly validate image-data dimensions, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified oth | ||
| CVE-2014-3188 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Oct 8, 2014 | Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do not properly handle the interaction of IPC and Google V8, which allows remote attackers to execute arbitrary code via vectors involving JSON data, related to improper parsing of an escaped index by ParseJson | ||
| CVE-2014-3178 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Sep 10, 2014 | Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree inconsistencies. | ||
| CVE-2014-3177 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3176. | ||
| CVE-2014-3176 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3177. | ||
| CVE-2014-3175 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors, related to the load_truetype_glyph function in truetype/ttgload.c in FreeType and other functions in other com | ||
| CVE-2014-3174 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 37.0.2062.94, does not properly consider concurrent threads during attempts to update biquad filter coefficients, which allows remote attackers to cause a denial of | ||
| CVE-2014-3173 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | The WebGL implementation in Google Chrome before 37.0.2062.94 does not ensure that clear calls interact properly with the state of a draw buffer, which allows remote attackers to cause a denial of service (read of uninitialized memory) via a crafted CANVAS element, related to gpu | ||
| CVE-2014-3172 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome before 37.0.2062.94 does not validate a tab's URL before an attach operation, which allows remote attackers to bypass intended access limitations via an extension that uses a restricted | ||
| CVE-2014-3171 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper use of HashMap add operations instead of HashMap set opera | ||
| CVE-2014-3170 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a '\0' character in a host name, which allows remote attackers to spoof the extension permission dialog by relying on truncation after this character. | ||
| CVE-2014-3169 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging script execution that occurs b | ||
| CVE-2014-3168 | — | < 55.0.2883.75-3.1 | 55.0.2883.75-3.1 | Aug 27, 2014 | Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper caching associated with animation. |
- CVE-2014-3196Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
base/memory/shared_memory_win.cc in Google Chrome before 38.0.2125.101 on Windows does not properly implement read-only restrictions on shared memory, which allows attackers to bypass a sandbox protection mechanism via unspecified vectors.
- CVE-2014-3195Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Google V8, as used in Google Chrome before 38.0.2125.101, does not properly track JavaScript heap-memory allocations as allocations of uninitialized memory and does not properly concatenate arrays of double-precision floating-point numbers, which allows remote attackers to obtain
- CVE-2014-3194Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in the Web Workers implementation in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
- CVE-2014-3193Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
The SessionService::GetLastSession function in browser/sessions/session_service.cc in Google Chrome before 38.0.2125.101 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via vectors that leverage "type confusion" for
- CVE-2014-3192Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unsp
- CVE-2014-3191Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers a widget-position update that improperly interacts with t
- CVE-2014-3190Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in the Event::currentTarget function in core/events/Event.cpp in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaS
- CVE-2014-3189Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
The chrome_pdf::CopyImage function in pdf/draw_utils.cc in the PDFium component in Google Chrome before 38.0.2125.101 does not properly validate image-data dimensions, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified oth
- CVE-2014-3188Oct 8, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do not properly handle the interaction of IPC and Google V8, which allows remote attackers to execute arbitrary code via vectors involving JSON data, related to improper parsing of an escaped index by ParseJson
- CVE-2014-3178Sep 10, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree inconsistencies.
- CVE-2014-3177Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3176.
- CVE-2014-3176Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3177.
- CVE-2014-3175Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors, related to the load_truetype_glyph function in truetype/ttgload.c in FreeType and other functions in other com
- CVE-2014-3174Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 37.0.2062.94, does not properly consider concurrent threads during attempts to update biquad filter coefficients, which allows remote attackers to cause a denial of
- CVE-2014-3173Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
The WebGL implementation in Google Chrome before 37.0.2062.94 does not ensure that clear calls interact properly with the state of a draw buffer, which allows remote attackers to cause a denial of service (read of uninitialized memory) via a crafted CANVAS element, related to gpu
- CVE-2014-3172Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome before 37.0.2062.94 does not validate a tab's URL before an attach operation, which allows remote attackers to bypass intended access limitations via an extension that uses a restricted
- CVE-2014-3171Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper use of HashMap add operations instead of HashMap set opera
- CVE-2014-3170Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a '\0' character in a host name, which allows remote attackers to spoof the extension permission dialog by relying on truncation after this character.
- CVE-2014-3169Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging script execution that occurs b
- CVE-2014-3168Aug 27, 2014affected < 55.0.2883.75-3.1fixed 55.0.2883.75-3.1
Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper caching associated with animation.
Page 186 of 203