SynopsisA web browser installed on the remote Mac OS X host is affected by multiple vulnerabilities.
DescriptionThe version of Google Chrome installed on the remote Mac OS X host is prior to 51.0.2704.103. It is, therefore, affected by multiple vulnerabilities :
- A flaw exists in the individualCharacterRanges() function in CachingWordShaper.cpp that is triggered when handling invalid glyph shaping results. A remote attacker can exploit this issue to corrupt memory, resulting in the execution of code.
- A use-after-free error exists in the OnChannelMessage() function in node_channel.cc that allows a remote attacker to dereference already freed memory, resulting in the execution of arbitrary code.
- An unspecified flaw exists in shared_worker_devtools_manager.cc that allows a remote attacker to have an unspecified impact.
SolutionUpgrade to Google Chrome version 51.0.2704.103 or later.