Multiple integer overflows in Skia, as used in Google Chrome 1.x before 1.0.154.64 and 2.x, and possibly Android, might allow remote attackers to execute arbitrary code in the renderer process via a crafted (1) image or (2) canvas.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Chrome | * | 1.0.154.53 (including) | |
Chrome | 0.2.149.29 (including) | 0.2.149.29 (including) | |
Chrome | 0.2.149.30 (including) | 0.2.149.30 (including) | |
Chrome | 0.2.152.1 (including) | 0.2.152.1 (including) | |
Chrome | 0.2.153.1 (including) | 0.2.153.1 (including) | |
Chrome | 0.3.154.0 (including) | 0.3.154.0 (including) | |
Chrome | 0.3.154.3 (including) | 0.3.154.3 (including) | |
Chrome | 0.4.154.18 (including) | 0.4.154.18 (including) | |
Chrome | 0.4.154.22 (including) | 0.4.154.22 (including) | |
Chrome | 0.4.154.31 (including) | 0.4.154.31 (including) | |
Chrome | 0.4.154.33 (including) | 0.4.154.33 (including) | |
Chrome | 1.0.154.36 (including) | 1.0.154.36 (including) | |
Chrome | 1.0.154.39 (including) | 1.0.154.39 (including) | |
Chrome | 1.0.154.42 (including) | 1.0.154.42 (including) | |
Chrome | 1.0.154.43 (including) | 1.0.154.43 (including) | |
Chrome | 1.0.154.46 (including) | 1.0.154.46 (including) | |
Chrome | 1.0.154.59 (including) | 1.0.154.59 (including) | |
Chrome | 2.0.156.1 (including) | 2.0.156.1 (including) | |
Chrome | 2.0.157.0 (including) | 2.0.157.0 (including) | |
Chrome | 2.0.157.2 (including) | 2.0.157.2 (including) | |
Chrome | 2.0.158.0 (including) | 2.0.158.0 (including) | |
Chrome | 2.0.159.0 (including) | 2.0.159.0 (including) |