http://code.google.com/p/chromium/issues/detail?id=82903

http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html

47963

oval:org.mitre.oval:def:14471

Versions of Google Chrome earlier than 11.0.696.71 are potentially affected by multiple vulnerabilities :

  - It may be possible to bypass the pop-up blocker. (CVE-2011-1801)

  - A stale pointer exists in floats rendering. (CVE-2011-1804)

  - A memory corruption issue exists in the GPU command buffer. (CVE-2011-1806)

  - An out-of-bounds write exists in blob handling. (CVE-2011-1807)

The version of Google Chrome installed on the remote host is earlier than 11.0.696.71.  Such versions of Chrome are affected by multiple vulnerabilities:

  - An unspecified error allows the pop-up blocker to be     bypassed. (Issue #72189)

  - A stale pointer can be left behind when floating point     numbers are rendered. (Issue #82546)

  - An unspecified error in the GPU command buffer can lead     to memory corruption. (Issue #82873)

  - An unspecified error in the handling of blobs can lead     to out-of-bounds writes. (Issue #82903)

ID	Name	Product	Family	Severity
800962	Google Chrome < 11.0.696.71 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
5931	Google Chrome < 11.0.696.71 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
54647	Google Chrome < 11.0.696.71 Multiple Vulnerabilities	Nessus	Windows	high
51069	FreeBSD : chromium -- multiple vulnerabilities (6887828f-0229-11e0-b84d-00262d5ed8ee)	Nessus	FreeBSD Local Security Checks	critical

CVE-2011-1807

HIGH

Description

References

Details

Risk Information

CVSS v2.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

high

critical