Multiple vulnerabilities have been reported in Google Chrome - SaltwaterCentral.Com
Adam B. Meyer, Esq. Maritime Insurance International 843.606.5270 Office &#\1; 910.202.4308 Direct adam@maritimeii.com &#\1; maritimeii.com

Post new topic   Reply to topic
 

Capt_Dave
Posts: 12331
Location: Cape Fear, NC
Reply with quote
Sat Sep 08, 2012 4:13 pm
SECUNIA ADVISORY ID: SA50105

CRITICALITY: Highly Critical

VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/50105/

RELEASE DATE: 2012-08-01

DESCRIPTION: Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.



1) An error when handling renders can be exploited to bypass the cross-process policy and cause interference. NOTE: This vulnerability affect the Linux platform only.
2) The application does not properly re-prompt the user when downloading multiple files and can be exploited to trick the user into downloading a malicious file.
3) An error when handling drag and drop events can be exploited to access certain restricted files.
4) Multiple errors exist within the PDF viewer. No further information is currently available.
5) Multiple integer overflow errors exist within the PDF viewer.
6) A use-after-free error exists when handling object linkage in PDFs.
7) An error within the "webRequest" module can be exploited to cause interference with the Chrome Web Store.
8) A use-after-free error exists within the PDF viewer.
9) An out-of-bounds write error exists within the PDF viewer.
10) A use-after-free error exits when handling CSS DOM objects.
11) An error within the WebP decoder can be exploited to cause a buffer overflow.
12) An unspecified error exists within tab handling. NOTE: This vulnerability affect the Linux platform only.
13) An out-of-bounds access error exists when clicking in date picker.

SOLUTION: Upgrade to a fixed version.

PROVIDED AND/OR DISCOVERED BY: The vendor credits:
1) Julien Tinnes, Google Chrome Security Team
2, 3) Matt Austin, Aspect Security
4, 5, 8, 9) Mateusz Jurczyk and Gynvael Coldwind, Google Security Team
6) Alexey Samsonov, Google
7) Trev, Adblock
10) Arthur Gerkis
11) Jüri Aedla
12) Jeff Roberts, Google Security Team
13) Chamal de Silva

ORIGINAL ADVISORY: googlechromereleases.blogspot.com/2012/07/stable-channel-release.html
_________________
Captain Dave Tilley
910-264-3973

Let\'s go kill something!
Carolina Beach Fishing Charters
  
View user's profile Send private message Send e-mail

Matador
Posts: 4196
Location: Johnston County, NC
Reply with quote
Sat Sep 08, 2012 9:17 pm
Dave, no hablo computer jargon. What the heck does all that stuff mean. How would the casual user know something is wrong?
_________________
Matador
2200 NauticStar Tournament

You can lead a horse to water but you cant make him THINK.
  
View user's profile Send private message Send e-mail

Capt_Dave
Posts: 12331
Location: Cape Fear, NC
Reply with quote
Sat Sep 08, 2012 9:31 pm
What you need to do is go run your updates on your computer when I post these things.

If it is for Internet Exployer....
Run Mircosoft Update

If it is something else...say chrome...Go to their website and update their software.

Dave
_________________
Captain Dave Tilley
910-264-3973

Let\'s go kill something!
Carolina Beach Fishing Charters
  
View user's profile Send private message Send e-mail

Matador
Posts: 4196
Location: Johnston County, NC
Reply with quote
Sun Sep 09, 2012 7:35 am
What about Safari. Will your message then be specific to Safari? Also, Safari sucks with Supermap. My other computer is being repaired so I am using my MacBook Air and it seems to half-load Supermap.
_________________
Matador
2200 NauticStar Tournament

You can lead a horse to water but you cant make him THINK.
  
View user's profile Send private message Send e-mail

Capt_Dave
Posts: 12331
Location: Cape Fear, NC
Reply with quote
Sun Sep 09, 2012 8:05 am
Matador wrote:
What about Safari. Will your message then be specific to Safari? Also, Safari sucks with Supermap. My other computer is being repaired so I am using my MacBook Air and it seems to half-load Supermap.


Here is where them...
http://secunia.com/community/advisories/historic/

One of my regular stops...

Yes Safari does suck with Supermap.
Apple itself has the "Too Big TO Fail" thing going on.
They do not want to play by the rules and it makes life tough for people like me that build content for browsers.

There is a set of rules for the internet in the world called WC3.

http://www.w3.org/

99% of what I build works based on those rules.

The problem comes when companies do NOT play by the rules for whatever reason. MS is bad for that...but Apple has gotten really bad for it.

That is why Firefox works so well with both the sites and SuperMap. It is the only browser that fully supports WC3.

If it was up to me....I would tell everyone to just use Firefox....but really...I have to write for Internet Exployer....and try t make it workl for everything else. It can be quite the pain in the ass.

Dave
_________________
Captain Dave Tilley
910-264-3973

Let\'s go kill something!
Carolina Beach Fishing Charters
  
View user's profile Send private message Send e-mail

Capt_Dave
Posts: 12331
Location: Cape Fear, NC
Reply with quote
Sun Sep 09, 2012 8:43 am
All the videos that are on this site are YouTube videos.

Can you see them with IE vie Youtube?

If so...I would think it is a security setting of some sort...

Look under Tools->Internet Options->Advanced->See if "Enable 3rd Party Extensions" is checked.

It should be...

Dave
_________________
Captain Dave Tilley
910-264-3973

Let\'s go kill something!
Carolina Beach Fishing Charters
  
View user's profile Send private message Send e-mail

Post new topic   Reply to topic


Jump to:   

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum
Adam B. Meyer, Esq. Maritime Insurance International 843.606.5270 Office &#\1; 910.202.4308 Direct adam@maritimeii.com &#\1; maritimeii.com

Multiple vulnerabilities have been reported in Google Chrome - SaltwaterCentral.Com