Description
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause a denial of service or (and) obtain sensitive information via specially crafted JavaScript code, specially crafted web site, unspecified linear-time attack, crafted XML data, crafted PDF document and other unknown vectors.
Below is a complete list of vulnerabilities
- Heap-buffer-overflow vulnerability in PDFium component
- Use-after-free vulnerability in IndexedBD and blink web browser engine
- Memory corruption in Skia 2D graphics library
- Content Security Policy bypass
- URL spoofing via pdf documents
- Universal Cross-Site Scripting vulnerability in blink web browser engine
- Bypassing Same Origin Policy with CSS
- Uninitialized memory read in International Components for Unicode
- XSS auditor bypass
Original advisories
Related products
CVE list
- CVE-2015-1287 warning
- CVE-2015-1288 high
- CVE-2015-1281 warning
- CVE-2015-1278 warning
- CVE-2015-1277 critical
- CVE-2015-1280 critical
- CVE-2015-1279 critical
- CVE-2015-1282 high
- CVE-2015-1273 high
- CVE-2015-1272 critical
- CVE-2015-1283 high
- CVE-2015-1284 critical
- CVE-2015-1285 warning
- CVE-2015-1276 critical
- CVE-2015-1286 warning
- CVE-2015-1275 warning
- CVE-2015-1270 high
- CVE-2015-1289 critical
- CVE-2015-1274 high
- CVE-2015-1271 high
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!