*** This bug is a security vulnerability *** Public security bug reported:
CVE-2012-2842 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2842) Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to counter handling. CVE-2012-2843 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2843) Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to layout height tracking. CVE-2012-2844 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2844) The PDF functionality in Google Chrome before 20.0.1132.57 does not properly handle JavaScript code, which allows remote attackers to cause a denial of service (incorrect object access) or possibly have unspecified other impact via a crafted document. ** Affects: chromium-browser (Ubuntu) Importance: Undecided Status: New ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-2844 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-2843 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-2842 ** Summary changed: - (CVE-2012-2842) <www-client/chromium-20.0.1132.57 : use-after-free vulnerability (CVE-2012-{2842,2843}) + (CVE-2012-2842) <www-client/chromium-20.0.1132.57 : use-after-free vulnerability (CVE-2012-{2842,2843,2844}) ** Description changed: CVE-2012-2842 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2842) Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to counter handling. CVE-2012-2843 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2843) Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to layout height tracking. - CVE-2012-2843 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2844) + CVE-2012-2844 (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2844) The PDF functionality in Google Chrome before 20.0.1132.57 does not properly handle JavaScript code, which allows remote attackers to cause a denial of service (incorrect object access) or possibly have unspecified other impact via a crafted document. ** Visibility changed to: Public -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1025111 Title: (CVE-2012-2842) <www-client/chromium-20.0.1132.57 : use-after-free vulnerability (CVE-2012-{2842,2843,2844}) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1025111/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
