Vulnerabilities > Google > Chrome > 10.0.648.204
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-05-03 | CVE-2011-1436 | Improper Input Validation vulnerability in Google Chrome Google Chrome before 11.0.696.57 on Linux does not properly interact with the X Window System, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors. | 5.0 |
| 2011-05-03 | CVE-2011-1435 | Incorrect Default Permissions vulnerability in Google Chrome Google Chrome before 11.0.696.57 does not properly implement the tabs permission for extensions, which allows remote attackers to read local files via a crafted extension. | 5.0 |
| 2011-05-03 | CVE-2011-1434 | Improper Input Validation vulnerability in Google Chrome Google Chrome before 11.0.696.57 does not ensure thread safety during handling of MIME data, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. | 6.8 |
| 2011-05-03 | CVE-2011-1305 | Race Condition vulnerability in Google Chrome Race condition in Google Chrome before 11.0.696.57 on Linux and Mac OS X allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to linked lists and a database. | 6.8 |
| 2011-05-03 | CVE-2011-1304 | Unspecified vulnerability in Google Chrome Unspecified vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to bypass the pop-up blocker via vectors related to plug-ins. | 5.0 |
| 2011-05-03 | CVE-2011-1303 | Improper Input Validation vulnerability in Google Chrome Google Chrome before 11.0.696.57 does not properly handle floating objects, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer." | 7.5 |
| 2011-04-15 | CVE-2011-1302 | Out-Of-Bounds Write vulnerability in Google Chrome Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors. | 9.3 |
| 2011-04-15 | CVE-2011-1301 | USE After Free vulnerability in Google Chrome Use-after-free vulnerability in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors. | 9.3 |
| 2011-04-15 | CVE-2011-1300 | Numeric Errors vulnerability in multiple products The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox 4.x before 4.0.1 on Windows and in the GPU process in Google Chrome before 10.0.648.205 on Windows, allows remote attackers to execute arbitrary code via unspecified vectors, related to an "off-by-three" error. | 10.0 |
| 2011-04-15 | CVE-2011-1691 | Null Pointer Dereference vulnerability in Google Chrome The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets (CSS) implementation in WebCore in WebKit before r82222, as used in Google Chrome before 11.0.696.43 and other products, does not properly handle access to the (1) counterIncrement and (2) counterReset attributes of CSSStyleDeclaration data provided by a getComputedStyle method call, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code. | 5.0 |