Google Chrome Update Fixes Three High-Level Vulnerabilities
The Google team has updated its Chrome web browser to version 21.0.1180.89 for Mac OS X and other operating systems. Security fixes include patches for three high-level vulnerabilities; the build fixes eight vulnerabilities overall. Google awarded $3,500 in cash to the independent security researchers who provided information about the security holes in its product. (Both Google and The Mozilla Foundation encourage scrutiny of their web browsers by paying independent researchers for information about vulnerabilities in their products.)
Following are descriptions of the three bugs rated “High”:
- CVE-2012-2866: Fixes a bug in all versions of Google Chrome before 21.0.1180.89, in which the browser does not properly perform a cast of an unspecified variable during handling of run-in elements. Unpatched, this allows remote attackers to cause a denial of service (or other impact) by way of maliciously crafted documents.
- CVE-2012-2869: Fixes a big in all versions of Google Chrome before 21.0.1180.89, in which the browser does not properly load URLs. Unpatched, this allows remote attackers to cause a denial of service (or possibly have unspecified other impact) by way of vectors that trigger a “stale buffer.”
- CVE-2012-2871: Fixes a problem with libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, in which the browser does not properly support a cast of an unspecified variable during handling of XSL transforms. Unpatched, this allows remote attackers to cause a denial of service (or other impact) by way of maliciously crafted documents, related to the _xmlNs data structure in include/libxml/tree.h.
Google’s Chrome browser updates automatically, or you can download Google Chrome to check it out.
