CVE-2009-1442

Multiple integer overflows in Skia, as used in Google Chrome 1.x before 1.0.154.64 and 2.x, and possibly Android, might allow remote attackers to execute arbitrary code in the renderer process via a crafted (1) image or (2) canvas.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.149.29:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.149.30:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.152.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.2.153.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.3.154.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.3.154.3:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.18:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.22:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.31:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:0.4.154.33:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.36:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.39:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.42:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.43:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.46:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:1.0.154.59:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:2.0.156.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:2.0.157.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:2.0.157.2:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:2.0.158.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:2.0.159.0:*:*:*:*:*:*:*

History

21 Nov 2024, 01:02

Type Values Removed Values Added
References () http://code.google.com/p/chromium/issues/detail?id=10736 - Exploit () http://code.google.com/p/chromium/issues/detail?id=10736 - Exploit
References () http://code.google.com/p/skia/source/detail?r=159 - () http://code.google.com/p/skia/source/detail?r=159 -
References () http://googlechromereleases.blogspot.com/2009/05/stable-update-security-fix.html - Patch, Vendor Advisory () http://googlechromereleases.blogspot.com/2009/05/stable-update-security-fix.html - Patch, Vendor Advisory
References () http://osvdb.org/54248 - () http://osvdb.org/54248 -
References () http://secunia.com/advisories/35014 - () http://secunia.com/advisories/35014 -
References () http://www.securityfocus.com/bid/34859 - () http://www.securityfocus.com/bid/34859 -
References () http://www.securitytracker.com/id?1022175 - () http://www.securitytracker.com/id?1022175 -
References () http://www.vupen.com/english/advisories/2009/1266 - () http://www.vupen.com/english/advisories/2009/1266 -

Information

Published : 2009-05-07 17:30

Updated : 2024-11-21 01:02


NVD link : CVE-2009-1442

Mitre link : CVE-2009-1442

CVE.ORG link : CVE-2009-1442


JSON object : View

Products Affected

google

  • chrome
CWE
CWE-189

Numeric Errors