| Bug | Description |
|---|
| TEMP-0532514-9137E0 | predictable random number generator used in web browsers |
| TEMP-0000000-F56399 | webkit info leak |
| TEMP-0000000-687E4D | null pointer dereference |
| CVE-2018-20346 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters a ... |
| CVE-2018-20070 | Incorrect handling of confusable characters in URL Formatter in Google ... |
| CVE-2018-20068 | Incorrect handling of 304 status codes in Navigation in Google Chrome ... |
| CVE-2018-20067 | A renderer initiated back navigation was incorrectly allowed to cancel ... |
| CVE-2018-20066 | Incorrect object lifecycle in Extensions in Google Chrome prior to 71. ... |
| CVE-2018-20065 | Handling of URI action in PDFium in Google Chrome prior to 71.0.3578.8 ... |
| CVE-2018-18359 | Incorrect handling of Reflect.construct in V8 in Google Chrome prior t ... |
| CVE-2018-18358 | Lack of special casing of localhost in WPAD files in Google Chrome pri ... |
| CVE-2018-18357 | Incorrect handling of confusable characters in URL Formatter in Google ... |
| CVE-2018-18356 | An integer overflow in path handling lead to a use after free in Skia ... |
| CVE-2018-18355 | Incorrect handling of confusable characters in URL Formatter in Google ... |
| CVE-2018-18354 | Insufficient validate of external protocols in Shell Integration in Go ... |
| CVE-2018-18353 | Failure to dismiss http auth dialogs on navigation in Network Authenti ... |
| CVE-2018-18352 | Service works could inappropriately gain access to cross origin audio ... |
| CVE-2018-18351 | Lack of proper validation of ancestor frames site when sending lax coo ... |
| CVE-2018-18350 | Incorrect handling of CSP enforcement during navigations in Blink in G ... |
| CVE-2018-18349 | Remote frame navigations was incorrectly permitted to local resources ... |
| CVE-2018-18348 | Incorrect handling of bidirectional domain names with RTL characters i ... |
| CVE-2018-18347 | Incorrect handling of failed navigations with invalid URLs in Navigati ... |
| CVE-2018-18346 | Incorrect handling of alert box display in Blink in Google Chrome prio ... |
| CVE-2018-18345 | Incorrect handling of blob URLS in Site Isolation in Google Chrome pri ... |
| CVE-2018-18344 | Inappropriate allowance of the setDownloadBehavior devtools protocol f ... |
| CVE-2018-18343 | Incorrect handing of paths leading to a use after free in Skia in Goog ... |
| CVE-2018-18342 | Execution of user supplied Javascript during object deserialization ca ... |
| CVE-2018-18341 | An integer overflow leading to a heap buffer overflow in Blink in Goog ... |
| CVE-2018-18340 | Incorrect object lifecycle in MediaRecorder in Google Chrome prior to ... |
| CVE-2018-18339 | Incorrect object lifecycle in WebAudio in Google Chrome prior to 71.0. ... |
| CVE-2018-18338 | Incorrect, thread-unsafe use of SkImage in Canvas in Google Chrome pri ... |
| CVE-2018-18337 | Incorrect handling of stylesheets leading to a use after free in Blink ... |
| CVE-2018-18336 | Incorrect object lifecycle in PDFium in Google Chrome prior to 71.0.35 ... |
| CVE-2018-18335 | Heap buffer overflow in Skia in Google Chrome prior to 71.0.3578.80 al ... |
| CVE-2018-17481 | Incorrect object lifecycle handling in PDFium in Google Chrome prior t ... |
| CVE-2018-17480 | Execution of user supplied Javascript during array deserialization lea ... |
| CVE-2018-16072 | A missing origin check related to HLS manifests in Blink in Google Chr ... |
| CVE-2018-6160 | JavaScript alert handling in Prompts in Google Chrome prior to 68.0.34 ... |
| CVE-2018-6128 | Incorrect URL parsing in WebKit in Google Chrome on iOS prior to 67.0. ... |
| CVE-2018-6115 | Inappropriate setting of the SEE_MASK_FLAG_NO_UI flag in file download ... |
| CVE-2018-6084 | Insufficiently sanitized distributed objects in Updater in Google Chro ... |
| CVE-2017-15430 | Insufficient data validation in Chromecast plugin in Google Chrome pri ... |
| CVE-2017-5096 | Insufficient policy enforcement during navigation between different sc ... |
| CVE-2017-5090 | Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 5 ... |
| CVE-2017-5046 | V8 in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux ... |
| CVE-2017-5045 | XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, a ... |
| CVE-2017-5044 | Heap buffer overflow in filter processing in Skia in Google Chrome pri ... |
| CVE-2017-5043 | Chrome Apps in Google Chrome prior to 57.0.2987.98 for Linux, Windows, ... |
| CVE-2017-5042 | Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linu ... |
| CVE-2017-5041 | Google Chrome prior to 57.0.2987.100 incorrectly handled back-forward ... |
| CVE-2017-5040 | V8 in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux ... |
| CVE-2017-5039 | A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for ... |
| CVE-2017-5038 | Chrome Apps in Google Chrome prior to 57.0.2987.98 for Linux, Windows, ... |
| CVE-2017-5037 | An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 f ... |
| CVE-2017-5036 | A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for ... |
| CVE-2017-5035 | Google Chrome prior to 57.0.2987.98 for Windows and Mac had a race con ... |
| CVE-2017-5034 | A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for ... |
| CVE-2017-5033 | Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Lin ... |
| CVE-2017-5032 | PDFium in Google Chrome prior to 57.0.2987.98 for Windows could be mad ... |
| CVE-2017-5031 | A use after free in ANGLE in Google Chrome prior to 57.0.2987.98 for W ... |
| CVE-2017-5030 | Incorrect handling of complex species in V8 in Google Chrome prior to ... |
| CVE-2017-5029 | The xsltAddTextString function in transform.c in libxslt 1.1.29, as us ... |
| CVE-2017-5028 | Insufficient data validation in V8 in Google Chrome prior to 56.0.2924 ... |
| CVE-2017-5027 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2017-5026 | Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed ... |
| CVE-2017-5025 | FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and M ... |
| CVE-2017-5024 | FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and M ... |
| CVE-2017-5023 | Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for ... |
| CVE-2017-5022 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2017-5021 | A use after free in Google Chrome prior to 56.0.2924.76 for Linux, Win ... |
| CVE-2017-5020 | Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56 ... |
| CVE-2017-5019 | A use after free in Google Chrome prior to 56.0.2924.76 for Linux, Win ... |
| CVE-2017-5018 | Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56 ... |
| CVE-2017-5017 | Interactions with the OS in Google Chrome prior to 56.0.2924.76 for Ma ... |
| CVE-2017-5016 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2017-5015 | Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56 ... |
| CVE-2017-5014 | Heap buffer overflow during image processing in Skia in Google Chrome ... |
| CVE-2017-5013 | Google Chrome prior to 56.0.2924.76 for Linux incorrectly handled new ... |
| CVE-2017-5012 | A heap buffer overflow in V8 in Google Chrome prior to 56.0.2924.76 fo ... |
| CVE-2017-5011 | Google Chrome prior to 56.0.2924.76 for Windows insufficiently sanitiz ... |
| CVE-2017-5010 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2017-5009 | WebRTC in Google Chrome prior to 56.0.2924.76 for Linux, Windows and M ... |
| CVE-2017-5008 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2017-5007 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2017-5006 | Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Ma ... |
| CVE-2016-10403 | Insufficient data validation on image data in PDFium in Google Chrome ... |
| CVE-2016-9652 | Multiple unspecified vulnerabilities in Google Chrome before 55.0.2883 ... |
| CVE-2016-9651 | A missing check for whether a property of a JS object is private in V8 ... |
| CVE-2016-9650 | Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linu ... |
| CVE-2016-7549 | Google Chrome before 53.0.2785.113 does not ensure that the recipient ... |
| CVE-2016-7395 | SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Wi ... |
| CVE-2016-5226 | Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Ma ... |
| CVE-2016-5225 | Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linu ... |
| CVE-2016-5224 | A timing attack on denormalized floating point arithmetic in SVG filte ... |
| CVE-2016-5223 | Integer overflow in PDFium in Google Chrome prior to 55.0.2883.75 for ... |
| CVE-2016-5222 | Incorrect handling of invalid URLs in Google Chrome prior to 55.0.2883 ... |
| CVE-2016-5221 | Type confusion in libGLESv2 in ANGLE in Google Chrome prior to 55.0.28 ... |
| CVE-2016-5220 | PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Lin ... |
| CVE-2016-5219 | A heap use after free in V8 in Google Chrome prior to 55.0.2883.75 for ... |
| CVE-2016-5218 | The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Win ... |
| CVE-2016-5217 | The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Win ... |
| CVE-2016-5216 | A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for ... |
| CVE-2016-5215 | A use after free in webaudio in Google Chrome prior to 55.0.2883.75 fo ... |
| CVE-2016-5214 | Google Chrome prior to 55.0.2883.75 for Windows mishandled downloaded ... |
| CVE-2016-5213 | A use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, ... |
| CVE-2016-5212 | Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55 ... |
| CVE-2016-5211 | A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for ... |
| CVE-2016-5210 | Heap buffer overflow during TIFF image parsing in PDFium in Google Chr ... |
| CVE-2016-5209 | Bad casting in bitmap manipulation in Blink in Google Chrome prior to ... |
| CVE-2016-5208 | Blink in Google Chrome prior to 55.0.2883.75 for Linux and Windows, an ... |
| CVE-2016-5207 | In Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and L ... |
| CVE-2016-5206 | The PDF plugin in Google Chrome prior to 55.0.2883.75 for Mac, Windows ... |
| CVE-2016-5205 | Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Ma ... |
| CVE-2016-5204 | Leaking of an SVG shadow tree leading to corruption of the DOM tree in ... |
| CVE-2016-5203 | A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for ... |
| CVE-2016-5202 | browser/extensions/api/dial/dial_registry.cc in Google Chrome before 5 ... |
| CVE-2016-5201 | A leak of privateClass in the extensions API in Google Chrome prior to ... |
| CVE-2016-5200 | V8 in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 fo ... |
| CVE-2016-5199 | An off by one error resulting in an allocation of zero size in FFmpeg ... |
| CVE-2016-5198 | V8 in Google Chrome prior to 54.0.2840.90 for Linux, and 54.0.2840.85 ... |
| CVE-2016-5197 | The content view client in Google Chrome prior to 54.0.2840.85 for And ... |
| CVE-2016-5196 | The content renderer client in Google Chrome prior to 54.0.2840.85 for ... |
| CVE-2016-5194 | Unspecified vulnerabilities in Google Chrome before 54.0.2840.59. |
| CVE-2016-5193 | Google Chrome prior to 54.0 for iOS had insufficient validation of URL ... |
| CVE-2016-5192 | Blink in Google Chrome prior to 54.0.2840.59 for Windows missed a CORS ... |
| CVE-2016-5191 | Bookmark handling in Google Chrome prior to 54.0.2840.59 for Windows, ... |
| CVE-2016-5190 | Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0. ... |
| CVE-2016-5189 | Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0. ... |
| CVE-2016-5188 | Multiple issues in Blink in Google Chrome prior to 54.0.2840.59 for Wi ... |
| CVE-2016-5187 | Google Chrome prior to 54.0.2840.85 for Android incorrectly handled ra ... |
| CVE-2016-5186 | Devtools in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and ... |
| CVE-2016-5185 | Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Lin ... |
| CVE-2016-5184 | PDFium in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Li ... |
| CVE-2016-5183 | A heap use after free in PDFium in Google Chrome prior to 54.0.2840.59 ... |
| CVE-2016-5182 | Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Lin ... |
| CVE-2016-5181 | Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Lin ... |
| CVE-2016-5178 | Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785 ... |
| CVE-2016-5177 | Use-after-free vulnerability in V8 in Google Chrome before 53.0.2785.1 ... |
| CVE-2016-5176 | Google Chrome before 53.0.2785.113 allows remote attackers to bypass t ... |
| CVE-2016-5175 | Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785 ... |
| CVE-2016-5174 | browser/ui/cocoa/browser_window_controller_private.mm in Google Chrome ... |
| CVE-2016-5173 | The extensions subsystem in Google Chrome before 53.0.2785.113 does no ... |
| CVE-2016-5172 | The parser in Google V8, as used in Google Chrome before 53.0.2785.113 ... |
| CVE-2016-5171 | WebKit/Source/bindings/templates/interface.cpp in Blink, as used in Go ... |
| CVE-2016-5170 | WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as ... |
| CVE-2016-5168 | Skia, as used in Google Chrome before 50.0.2661.94, allows remote atta ... |
| CVE-2016-5167 | Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785 ... |
| CVE-2016-5166 | The download implementation in Google Chrome before 53.0.2785.89 on Wi ... |
| CVE-2016-5165 | Cross-site scripting (XSS) vulnerability in the Developer Tools (aka D ... |
| CVE-2016-5164 | Cross-site scripting (XSS) vulnerability in WebKit/Source/platform/v8_ ... |
| CVE-2016-5163 | The bidirectional-text implementation in Google Chrome before 53.0.278 ... |
| CVE-2016-5162 | The AllowCrossRendererResourceLoad function in extensions/browser/url_ ... |
| CVE-2016-5161 | The EditingStyle::mergeStyle function in WebKit/Source/core/editing/Ed ... |
| CVE-2016-5160 | The AllowCrossRendererResourceLoad function in extensions/browser/url_ ... |
| CVE-2016-5159 | Multiple integer overflows in OpenJPEG, as used in PDFium in Google Ch ... |
| CVE-2016-5158 | Multiple integer overflows in the opj_tcd_init_tile function in tcd.c ... |
| CVE-2016-5157 | Heap-based buffer overflow in the opj_dwt_interleave_v function in dwt ... |
| CVE-2016-5156 | extensions/renderer/event_bindings.cc in the event bindings in Google ... |
| CVE-2016-5155 | Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0. ... |
| CVE-2016-5154 | Multiple heap-based buffer overflows in PDFium, as used in Google Chro ... |
| CVE-2016-5153 | The Web Animations implementation in Blink, as used in Google Chrome b ... |
| CVE-2016-5152 | Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd. ... |
| CVE-2016-5151 | PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and be ... |
| CVE-2016-5150 | WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as ... |
| CVE-2016-5149 | The extensions subsystem in Google Chrome before 53.0.2785.89 on Windo ... |
| CVE-2016-5148 | Cross-site scripting (XSS) vulnerability in Blink, as used in Google C ... |
| CVE-2016-5147 | Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS ... |
| CVE-2016-5146 | Multiple unspecified vulnerabilities in Google Chrome before 52.0.2743 ... |
| CVE-2016-5145 | Blink, as used in Google Chrome before 52.0.2743.116, does not ensure ... |
| CVE-2016-5144 | The Developer Tools (aka DevTools) subsystem in Blink, as used in Goog ... |
| CVE-2016-5143 | The Developer Tools (aka DevTools) subsystem in Blink, as used in Goog ... |
| CVE-2016-5142 | The Web Cryptography API (aka WebCrypto) implementation in Blink, as u ... |
| CVE-2016-5141 | Blink, as used in Google Chrome before 52.0.2743.116, allows remote at ... |
| CVE-2016-5140 | Heap-based buffer overflow in the opj_j2k_read_SQcd_SQcc function in j ... |
| CVE-2016-5139 | Multiple integer overflows in the opj_tcd_init_tile function in tcd.c ... |
| CVE-2016-5138 | Integer overflow in the kbasep_vinstr_attach_client function in midgar ... |
| CVE-2016-5137 | The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/ ... |
| CVE-2016-5136 | Use-after-free vulnerability in extensions/renderer/user_script_inject ... |
| CVE-2016-5135 | WebKit/Source/core/html/parser/HTMLPreloadScanner.cpp in Blink, as use ... |
| CVE-2016-5134 | net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in G ... |
| CVE-2016-5133 | Google Chrome before 52.0.2743.82 mishandles origin information during ... |
| CVE-2016-5132 | The Service Workers subsystem in Google Chrome before 52.0.2743.82 doe ... |
| CVE-2016-5131 | Use-after-free vulnerability in libxml2 through 2.9.4, as used in Goog ... |
| CVE-2016-5130 | content/renderer/history_controller.cc in Google Chrome before 52.0.27 ... |
| CVE-2016-5129 | Google V8 before 5.2.361.32, as used in Google Chrome before 52.0.2743 ... |
| CVE-2016-5128 | objects.cc in Google V8 before 5.2.361.27, as used in Google Chrome be ... |
| CVE-2016-5127 | Use-after-free vulnerability in WebKit/Source/core/editing/VisibleUnit ... |
| CVE-2016-2845 | The Content Security Policy (CSP) implementation in Blink, as used in ... |
| CVE-2016-2844 | WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google ... |
| CVE-2016-2843 | Multiple unspecified vulnerabilities in Google V8 before 4.9.385.26, a ... |
| CVE-2016-2052 | Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used ... |
| CVE-2016-1711 | WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google ... |
| CVE-2016-1710 | The ChromeClientImpl::createWindow method in WebKit/Source/web/ChromeC ... |
| CVE-2016-1709 | Heap-based buffer overflow in the ByteArray::Get method in data/byte_a ... |
| CVE-2016-1708 | The Chrome Web Store inline-installation implementation in the Extensi ... |
| CVE-2016-1707 | ios/web/web_state/ui/crw_web_controller.mm in Google Chrome before 52. ... |
| CVE-2016-1706 | The PPAPI implementation in Google Chrome before 52.0.2743.82 does not ... |
| CVE-2016-1705 | Multiple unspecified vulnerabilities in Google Chrome before 52.0.2743 ... |
| CVE-2016-1704 | Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704 ... |
| CVE-2016-1703 | Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704 ... |
| CVE-2016-1702 | The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as ... |
| CVE-2016-1701 | The Autofill implementation in Google Chrome before 51.0.2704.79 misha ... |
| CVE-2016-1700 | extensions/renderer/runtime_custom_bindings.cc in Google Chrome before ... |
| CVE-2016-1699 | WebKit/Source/devtools/front_end/devtools.js in the Developer Tools (a ... |
| CVE-2016-1698 | The createCustomType function in extensions/renderer/resources/binding ... |
| CVE-2016-1697 | The FrameLoader::startLoad function in WebKit/Source/core/loader/Frame ... |
| CVE-2016-1696 | The extensions subsystem in Google Chrome before 51.0.2704.79 does not ... |
| CVE-2016-1695 | Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704 ... |
| CVE-2016-1694 | browser/browsing_data/browsing_data_remover.cc in Google Chrome before ... |
| CVE-2016-1693 | browser/safe_browsing/srt_field_trial_win.cc in Google Chrome before 5 ... |
| CVE-2016-1692 | WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Goo ... |
| CVE-2016-1691 | Skia, as used in Google Chrome before 51.0.2704.63, mishandles coincid ... |
| CVE-2016-1690 | The Autofill implementation in Google Chrome before 51.0.2704.63 misha ... |
| CVE-2016-1689 | Heap-based buffer overflow in content/renderer/media/canvas_capture_ha ... |
| CVE-2016-1688 | The regexp (aka regular expression) implementation in Google V8 before ... |
| CVE-2016-1687 | The renderer implementation in Google Chrome before 51.0.2704.63 does ... |
| CVE-2016-1686 | The CPDF_DIBSource::CreateDecoder function in core/fpdfapi/fpdf_render ... |
| CVE-2016-1685 | core/fxge/ge/fx_ge_text.cpp in PDFium, as used in Google Chrome before ... |
| CVE-2016-1684 | numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51 ... |
| CVE-2016-1683 | numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51 ... |
| CVE-2016-1682 | The ServiceWorkerContainer::registerServiceWorkerImpl function in WebK ... |
| CVE-2016-1681 | Heap-based buffer overflow in the opj_j2k_read_SPCod_SPCoc function in ... |
| CVE-2016-1680 | Use-after-free vulnerability in ports/SkFontHost_FreeType.cpp in Skia, ... |
| CVE-2016-1679 | The ToV8Value function in content/child/v8_value_converter_impl.cc in ... |
| CVE-2016-1678 | objects.cc in Google V8 before 5.0.71.32, as used in Google Chrome bef ... |
| CVE-2016-1677 | uri.js in Google V8 before 5.1.281.26, as used in Google Chrome before ... |
| CVE-2016-1676 | extensions/renderer/resources/binding.js in the extension bindings in ... |
| CVE-2016-1675 | Blink, as used in Google Chrome before 51.0.2704.63, allows remote att ... |
| CVE-2016-1674 | The extensions subsystem in Google Chrome before 51.0.2704.63 allows r ... |
| CVE-2016-1673 | Blink, as used in Google Chrome before 51.0.2704.63, allows remote att ... |
| CVE-2016-1672 | The ModuleSystem::RequireForJsInner function in extensions/renderer/mo ... |
| CVE-2016-1671 | Google Chrome before 50.0.2661.102 on Android mishandles / (slash) and ... |
| CVE-2016-1670 | Race condition in the ResourceDispatcherHostImpl::BeginRequest functio ... |
| CVE-2016-1669 | The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as us ... |
| CVE-2016-1668 | The forEachForBinding function in WebKit/Source/bindings/core/v8/Itera ... |
| CVE-2016-1667 | The TreeScope::adoptIfNeeded function in WebKit/Source/core/dom/TreeSc ... |
| CVE-2016-1666 | Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661 ... |
| CVE-2016-1665 | The JSGenericLowering class in compiler/js-generic-lowering.cc in Goog ... |
| CVE-2016-1664 | The HistoryController::UpdateForCommit function in content/renderer/hi ... |
| CVE-2016-1663 | The SerializedScriptValue::transferArrayBuffers function in WebKit/Sou ... |
| CVE-2016-1662 | extensions/renderer/gc_callback.cc in Google Chrome before 50.0.2661.9 ... |
| CVE-2016-1661 | Blink, as used in Google Chrome before 50.0.2661.94, does not ensure t ... |
| CVE-2016-1660 | Blink, as used in Google Chrome before 50.0.2661.94, mishandles assert ... |
| CVE-2016-1659 | Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661 ... |
| CVE-2016-1658 | The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrec ... |
| CVE-2016-1657 | The WebContentsImpl::FocusLocationBarByDefault function in content/bro ... |
| CVE-2016-1656 | The download implementation in Google Chrome before 50.0.2661.75 on An ... |
| CVE-2016-1655 | Google Chrome before 50.0.2661.75 does not properly consider that fram ... |
| CVE-2016-1654 | The media subsystem in Google Chrome before 50.0.2661.75 does not init ... |
| CVE-2016-1653 | The LoadBuffer implementation in Google V8, as used in Google Chrome b ... |
| CVE-2016-1652 | Cross-site scripting (XSS) vulnerability in the ModuleSystem::RequireF ... |
| CVE-2016-1651 | fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome ... |
| CVE-2016-1650 | The PageCaptureSaveAsMHTMLFunction::ReturnFailure function in browser/ ... |
| CVE-2016-1649 | The Program::getUniformInternal function in Program.cpp in libANGLE, a ... |
| CVE-2016-1648 | Use-after-free vulnerability in the GetLoadTimes function in renderer/ ... |
| CVE-2016-1647 | Use-after-free vulnerability in the RenderWidgetHostImpl::Destroy func ... |
| CVE-2016-1646 | The Array.prototype.concat implementation in builtins.cc in Google V8, ... |
| CVE-2016-1645 | Multiple integer signedness errors in the opj_j2k_update_image_data fu ... |
| CVE-2016-1644 | WebKit/Source/core/layout/LayoutObject.cpp in Blink, as used in Google ... |
| CVE-2016-1643 | The ImageInputType::ensurePrimaryContent function in WebKit/Source/cor ... |
| CVE-2016-1642 | Multiple unspecified vulnerabilities in Google Chrome before 49.0.2623 ... |
| CVE-2016-1641 | Use-after-free vulnerability in content/browser/web_contents/web_conte ... |
| CVE-2016-1640 | The Web Store inline-installer implementation in the Extensions UI in ... |
| CVE-2016-1639 | Use-after-free vulnerability in browser/extensions/api/webrtc_audio_pr ... |
| CVE-2016-1638 | extensions/renderer/resources/platform_app.js in the Extensions subsys ... |
| CVE-2016-1637 | The SkATan2_255 function in effects/gradients/SkSweepGradient.cpp in S ... |
| CVE-2016-1636 | The PendingScript::notifyFinished function in WebKit/Source/core/dom/P ... |
| CVE-2016-1635 | extensions/renderer/render_frame_observer_natives.cc in Google Chrome ... |
| CVE-2016-1634 | Use-after-free vulnerability in the StyleResolver::appendCSSStyleSheet ... |
| CVE-2016-1633 | Use-after-free vulnerability in Blink, as used in Google Chrome before ... |
| CVE-2016-1632 | The Extensions subsystem in Google Chrome before 49.0.2623.75 does not ... |
| CVE-2016-1631 | The PPB_Flash_MessageLoop_Impl::InternalRun function in content/render ... |
| CVE-2016-1630 | The ContainerNode::parserRemoveChild function in WebKit/Source/core/do ... |
| CVE-2016-1629 | Google Chrome before 48.0.2564.116 allows remote attackers to bypass t ... |
| CVE-2016-1628 | pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564. ... |
| CVE-2016-1627 | The Developer Tools (aka DevTools) subsystem in Google Chrome before 4 ... |
| CVE-2016-1626 | The opj_pi_update_decode_poc function in pi.c in OpenJPEG, as used in ... |
| CVE-2016-1625 | The Chrome Instant feature in Google Chrome before 48.0.2564.109 does ... |
| CVE-2016-1624 | Integer underflow in the ProcessCommandsInternal function in dec/decod ... |
| CVE-2016-1623 | The DOM implementation in Google Chrome before 48.0.2564.109 does not ... |
| CVE-2016-1622 | The Extensions subsystem in Google Chrome before 48.0.2564.109 does no ... |
| CVE-2016-1620 | Multiple unspecified vulnerabilities in Google Chrome before 48.0.2564 ... |
| CVE-2016-1619 | Multiple integer overflows in the (1) sycc422_to_rgb and (2) sycc444_t ... |
| CVE-2016-1618 | Blink, as used in Google Chrome before 48.0.2564.82, does not ensure t ... |
| CVE-2016-1617 | The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/ ... |
| CVE-2016-1616 | The CustomButton::AcceleratorPressed function in ui/views/controls/but ... |
| CVE-2016-1615 | The Omnibox implementation in Google Chrome before 48.0.2564.82 allows ... |
| CVE-2016-1614 | The UnacceleratedImageBufferSurface class in WebKit/Source/platform/gr ... |
| CVE-2016-1613 | Multiple use-after-free vulnerabilities in the formfiller implementati ... |
| CVE-2016-1612 | The LoadIC::UpdateCaches function in ic/ic.cc in Google V8, as used in ... |
| CVE-2015-8664 | Integer overflow in the WebCursor::Deserialize function in content/com ... |
| CVE-2015-8548 | Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as ... |
| CVE-2015-8480 | The VideoFramePool::PoolImpl::CreateFrame function in media/base/video ... |
| CVE-2015-8479 | Use-after-free vulnerability in the AudioOutputDevice::OnDeviceAuthori ... |
| CVE-2015-8478 | Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as ... |
| CVE-2015-8126 | Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE ... |
| CVE-2015-7834 | Multiple unspecified vulnerabilities in Google V8 before 4.6.85.23, as ... |
| CVE-2015-6792 | The MIDI subsystem in Google Chrome before 47.0.2526.106 does not prop ... |
| CVE-2015-6791 | Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526 ... |
| CVE-2015-6790 | The WebPageSerializerImpl::openTagToString function in WebKit/Source/w ... |
| CVE-2015-6789 | Race condition in the MutationObserver implementation in Blink, as use ... |
| CVE-2015-6788 | The ObjectBackedNativeHandler class in extensions/renderer/object_back ... |
| CVE-2015-6787 | Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526 ... |
| CVE-2015-6786 | The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CS ... |
| CVE-2015-6785 | The CSPSource::hostMatches function in WebKit/Source/core/frame/csp/CS ... |
| CVE-2015-6784 | The page serializer in Google Chrome before 47.0.2526.73 mishandles Ma ... |
| CVE-2015-6783 | The FindStartOffsetOfFileInZipFile function in crazy_linker_zip.cpp in ... |
| CVE-2015-6782 | The Document::open function in WebKit/Source/core/dom/Document.cpp in ... |
| CVE-2015-6781 | Integer overflow in the FontData::Bound function in data/font_data.cc ... |
| CVE-2015-6780 | Use-after-free vulnerability in the Infobars implementation in Google ... |
| CVE-2015-6779 | PDFium, as used in Google Chrome before 47.0.2526.73, does not properl ... |
| CVE-2015-6778 | The CJBig2_SymbolDict class in fxcodec/jbig2/JBig2_SymbolDict.cpp in P ... |
| CVE-2015-6777 | Use-after-free vulnerability in the ContainerNode::notifyNodeInsertedI ... |
| CVE-2015-6776 | The opj_dwt_decode_1* functions in dwt.c in OpenJPEG, as used in PDFiu ... |
| CVE-2015-6775 | fpdfsdk/src/jsapi/fxjs_v8.cpp in PDFium, as used in Google Chrome befo ... |
| CVE-2015-6774 | Use-after-free vulnerability in the GetLoadTimes function in renderer/ ... |
| CVE-2015-6773 | The convolution implementation in Skia, as used in Google Chrome befor ... |
| CVE-2015-6772 | The DOM implementation in Blink, as used in Google Chrome before 47.0. ... |
| CVE-2015-6771 | js/array.js in Google V8, as used in Google Chrome before 47.0.2526.73 ... |
| CVE-2015-6770 | The DOM implementation in Google Chrome before 47.0.2526.73 allows rem ... |
| CVE-2015-6769 | The provisional-load commit implementation in WebKit/Source/bindings/c ... |
| CVE-2015-6768 | The DOM implementation in Google Chrome before 47.0.2526.73 allows rem ... |
| CVE-2015-6767 | Use-after-free vulnerability in content/browser/appcache/appcache_disp ... |
| CVE-2015-6766 | Use-after-free vulnerability in the AppCache implementation in Google ... |
| CVE-2015-6765 | Use-after-free vulnerability in content/browser/appcache/appcache_upda ... |
| CVE-2015-6764 | The BasicJsonStringifier::SerializeJSArray function in json-stringifie ... |
| CVE-2015-6763 | Multiple unspecified vulnerabilities in Google Chrome before 46.0.2490 ... |
| CVE-2015-6762 | The CSSFontFaceSrcValue::fetch function in core/css/CSSFontFaceSrcValu ... |
| CVE-2015-6761 | The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2 ... |
| CVE-2015-6760 | The Image11::map function in renderer/d3d/d3d11/Image11.cpp in libANGL ... |
| CVE-2015-6759 | The shouldTreatAsUniqueOrigin function in platform/weborigin/SecurityO ... |
| CVE-2015-6758 | The CPDF_Document::GetPage function in fpdfapi/fpdf_parser/fpdf_parser ... |
| CVE-2015-6757 | Use-after-free vulnerability in content/browser/service_worker/embedde ... |
| CVE-2015-6756 | Use-after-free vulnerability in the CPDFSDK_PageView implementation in ... |
| CVE-2015-6755 | The ContainerNode::parserInsertBefore function in core/dom/ContainerNo ... |
| CVE-2015-6583 | Google Chrome before 45.0.2454.85 does not display a location bar for ... |
| CVE-2015-6582 | The decompose function in platform/transforms/TransformationMatrix.cpp ... |
| CVE-2015-6581 | Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_t ... |
| CVE-2015-6580 | Multiple unspecified vulnerabilities in Google V8 before 4.5.103.29, a ... |
| CVE-2015-3910 | Multiple unspecified vulnerabilities in Google V8 before 4.3.61.21, as ... |
| CVE-2015-3336 | Google Chrome before 42.0.2311.90 does not always ask the user before ... |
| CVE-2015-3335 | The NaClSandbox::InitializeLayerTwoSandbox function in components/nacl ... |
| CVE-2015-3334 | browser/ui/website_settings/website_settings.cc in Google Chrome befor ... |
| CVE-2015-3333 | Multiple unspecified vulnerabilities in Google V8 before 4.2.77.14, as ... |
| CVE-2015-2239 | Google Chrome before 41.0.2272.76, when Instant Extended mode is used, ... |
| CVE-2015-2238 | Multiple unspecified vulnerabilities in Google V8 before 4.1.0.21, as ... |
| CVE-2015-1361 | platform/image-decoders/ImageFrame.h in Blink, as used in Google Chrom ... |
| CVE-2015-1360 | Skia, as used in Google Chrome before 40.0.2214.91, allows remote atta ... |
| CVE-2015-1359 | Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, ... |
| CVE-2015-1346 | Multiple unspecified vulnerabilities in Google V8 before 3.30.33.15, a ... |
| CVE-2015-1304 | object-observe.js in Google V8, as used in Google Chrome before 45.0.2 ... |
| CVE-2015-1303 | bindings/core/v8/V8DOMWrapper.h in Blink, as used in Google Chrome bef ... |
| CVE-2015-1302 | The PDF viewer in Google Chrome before 46.0.2490.86 does not properly ... |
| CVE-2015-1301 | Multiple unspecified vulnerabilities in Google Chrome before 45.0.2454 ... |
| CVE-2015-1300 | The FrameFetchContext::updateTimingInfoForIFrameNavigation function in ... |
| CVE-2015-1299 | Use-after-free vulnerability in the shared-timer implementation in Bli ... |
| CVE-2015-1298 | The RuntimeEventRouter::OnExtensionUninstalled function in extensions/ ... |
| CVE-2015-1297 | The WebRequest API implementation in extensions/browser/api/web_reques ... |
| CVE-2015-1296 | The UnescapeURLWithAdjustmentsImpl implementation in net/base/escape.c ... |
| CVE-2015-1295 | Multiple use-after-free vulnerabilities in the PrintWebViewHelper clas ... |
| CVE-2015-1294 | Use-after-free vulnerability in the SkMatrix::invertNonIdentity functi ... |
| CVE-2015-1293 | The DOM implementation in Blink, as used in Google Chrome before 45.0. ... |
| CVE-2015-1292 | The NavigatorServiceWorker::serviceWorker function in modules/servicew ... |
| CVE-2015-1291 | The ContainerNode::parserRemoveChild function in core/dom/ContainerNod ... |
| CVE-2015-1290 | The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and ... |
| CVE-2015-1289 | Multiple unspecified vulnerabilities in Google Chrome before 44.0.2403 ... |
| CVE-2015-1288 | The Spellcheck API implementation in Google Chrome before 44.0.2403.89 ... |
| CVE-2015-1287 | Blink, as used in Google Chrome before 44.0.2403.89, enables a quirks- ... |
| CVE-2015-1286 | Cross-site scripting (XSS) vulnerability in the V8ContextNativeHandler ... |
| CVE-2015-1285 | The XSSAuditor::canonicalize function in core/html/parser/XSSAuditor.c ... |
| CVE-2015-1284 | The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in ... |
| CVE-2015-1283 | Multiple integer overflows in the XML_GetBuffer function in Expat thro ... |
| CVE-2015-1282 | Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Docu ... |
| CVE-2015-1281 | core/loader/ImageLoader.cpp in Blink, as used in Google Chrome before ... |
| CVE-2015-1280 | SkPictureShader.cpp in Skia, as used in Google Chrome before 44.0.2403 ... |
| CVE-2015-1279 | Integer overflow in the CJBig2_Image::expand function in fxcodec/jbig2 ... |
| CVE-2015-1278 | content/browser/web_contents/web_contents_impl.cc in Google Chrome bef ... |
| CVE-2015-1277 | Use-after-free vulnerability in the accessibility implementation in Go ... |
| CVE-2015-1276 | Use-after-free vulnerability in content/browser/indexed_db/indexed_db_ ... |
| CVE-2015-1275 | Cross-site scripting (XSS) vulnerability in org/chromium/chrome/browse ... |
| CVE-2015-1274 | Google Chrome before 44.0.2403.89 does not ensure that the auto-open l ... |
| CVE-2015-1273 | Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used ... |
| CVE-2015-1272 | Use-after-free vulnerability in the GPU process implementation in Goog ... |
| CVE-2015-1271 | PDFium, as used in Google Chrome before 44.0.2403.89, does not properl ... |
| CVE-2015-1270 | The ucnv_io_getConverterName function in common/ucnv_io.cpp in Interna ... |
| CVE-2015-1269 | The DecodeHSTSPreloadRaw function in net/http/transport_security_state ... |
| CVE-2015-1268 | bindings/scripts/v8_types.py in Blink, as used in Google Chrome before ... |
| CVE-2015-1267 | Blink, as used in Google Chrome before 43.0.2357.130, does not properl ... |
| CVE-2015-1266 | content/browser/webui/content_web_ui_controller_factory.cc in Google C ... |
| CVE-2015-1265 | Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357 ... |
| CVE-2015-1264 | Cross-site scripting (XSS) vulnerability in Google Chrome before 43.0. ... |
| CVE-2015-1263 | The Spellcheck API implementation in Google Chrome before 43.0.2357.65 ... |
| CVE-2015-1262 | platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google ... |
| CVE-2015-1261 | android/java/src/org/chromium/chrome/browser/WebsiteSettingsPopup.java ... |
| CVE-2015-1260 | Multiple use-after-free vulnerabilities in content/renderer/media/user ... |
| CVE-2015-1259 | PDFium, as used in Google Chrome before 43.0.2357.65, does not properl ... |
| CVE-2015-1258 | Google Chrome before 43.0.2357.65 relies on libvpx code that was not b ... |
| CVE-2015-1257 | platform/graphics/filters/FEColorMatrix.cpp in the SVG implementation ... |
| CVE-2015-1256 | Use-after-free vulnerability in the SVG implementation in Blink, as us ... |
| CVE-2015-1255 | Use-after-free vulnerability in content/renderer/media/webaudio_captur ... |
| CVE-2015-1254 | core/dom/Document.cpp in Blink, as used in Google Chrome before 43.0.2 ... |
| CVE-2015-1253 | core/html/parser/HTMLConstructionSite.cpp in the DOM implementation in ... |
| CVE-2015-1252 | common/partial_circular_buffer.cc in Google Chrome before 43.0.2357.65 ... |
| CVE-2015-1251 | Use-after-free vulnerability in the SpeechRecognitionClient implementa ... |
| CVE-2015-1250 | Multiple unspecified vulnerabilities in Google Chrome before 42.0.2311 ... |
| CVE-2015-1249 | Multiple unspecified vulnerabilities in Google Chrome before 42.0.2311 ... |
| CVE-2015-1248 | The FileSystem API in Google Chrome before 40.0.2214.91 allows remote ... |
| CVE-2015-1247 | The SearchEngineTabHelper::OnPageHasOSDD function in browser/ui/search ... |
| CVE-2015-1246 | Blink, as used in Google Chrome before 42.0.2311.90, allows remote att ... |
| CVE-2015-1245 | Use-after-free vulnerability in the OpenPDFInReaderView::Update functi ... |
| CVE-2015-1244 | The URLRequest::GetHSTSRedirect function in url_request/url_request.cc ... |
| CVE-2015-1243 | Use-after-free vulnerability in the MutationObserver::disconnect funct ... |
| CVE-2015-1242 | The ReduceTransitionElementsKind function in hydrogen-check-eliminatio ... |
| CVE-2015-1241 | Google Chrome before 42.0.2311.90 does not properly consider the inter ... |
| CVE-2015-1240 | gpu/blink/webgraphicscontext3d_impl.cc in the WebGL implementation in ... |
| CVE-2015-1238 | Skia, as used in Google Chrome before 42.0.2311.90, allows remote atta ... |
| CVE-2015-1237 | Use-after-free vulnerability in the RenderFrameImpl::OnMessageReceived ... |
| CVE-2015-1236 | The MediaElementAudioSourceNode::process function in modules/webaudio/ ... |
| CVE-2015-1235 | The ContainerNode::parserRemoveChild function in core/dom/ContainerNod ... |
| CVE-2015-1234 | Race condition in gpu/command_buffer/service/gles2_cmd_decoder.cc in G ... |
| CVE-2015-1233 | Google Chrome before 41.0.2272.118 does not properly handle the intera ... |
| CVE-2015-1232 | Array index error in the MidiManagerUsb::DispatchSendMidiData function ... |
| CVE-2015-1231 | Multiple unspecified vulnerabilities in Google Chrome before 41.0.2272 ... |
| CVE-2015-1230 | The getHiddenProperty function in bindings/core/v8/V8EventListenerList ... |
| CVE-2015-1229 | net/http/proxy_client_socket.cc in Google Chrome before 41.0.2272.76 d ... |
| CVE-2015-1228 | The RenderCounter::updateCounter function in core/rendering/RenderCoun ... |
| CVE-2015-1227 | The DragImage::create function in platform/DragImage.cpp in Blink, as ... |
| CVE-2015-1226 | The DebuggerFunction::InitAgentHost function in browser/extensions/api ... |
| CVE-2015-1225 | PDFium, as used in Google Chrome before 41.0.2272.76, allows remote at ... |
| CVE-2015-1224 | The VpxVideoDecoder::VpxDecode function in media/filters/vpx_video_dec ... |
| CVE-2015-1223 | Multiple use-after-free vulnerabilities in core/html/HTMLInputElement. ... |
| CVE-2015-1222 | Multiple use-after-free vulnerabilities in the ServiceWorkerScriptCach ... |
| CVE-2015-1221 | Use-after-free vulnerability in Blink, as used in Google Chrome before ... |
| CVE-2015-1220 | Use-after-free vulnerability in the GIFImageReader::parseData function ... |
| CVE-2015-1219 | Integer overflow in the SkMallocPixelRef::NewAllocate function in core ... |
| CVE-2015-1218 | Multiple use-after-free vulnerabilities in the DOM implementation in B ... |
| CVE-2015-1217 | The V8LazyEventListener::prepareListenerObject function in bindings/co ... |
| CVE-2015-1216 | Use-after-free vulnerability in the V8Window::namedPropertyGetterCusto ... |
| CVE-2015-1215 | The filters implementation in Skia, as used in Google Chrome before 41 ... |
| CVE-2015-1214 | Integer overflow in the SkAutoSTArray implementation in include/core/S ... |
| CVE-2015-1213 | The SkBitmap::ReadRawPixels function in core/SkBitmap.cpp in the filte ... |
| CVE-2015-1212 | Multiple unspecified vulnerabilities in Google Chrome before 40.0.2214 ... |
| CVE-2015-1211 | The OriginCanAccessServiceWorkers function in content/browser/service_ ... |
| CVE-2015-1210 | The V8ThrowException::createDOMException function in bindings/core/v8/ ... |
| CVE-2015-1209 | Use-after-free vulnerability in the VisibleSelection::nonBoundaryShado ... |
| CVE-2015-1206 | Heap-based buffer overflow in Google Chrome before M40 allows remote a ... |
| CVE-2015-1205 | Multiple unspecified vulnerabilities in Google Chrome before 40.0.2214 ... |
| CVE-2014-9689 | content/renderer/device_sensors/device_orientation_event_pump.cc in Go ... |
| CVE-2014-9648 | components/navigation_interception/intercept_navigation_resource_throt ... |
| CVE-2014-9647 | Use-after-free vulnerability in PDFium, as used in Google Chrome befor ... |
| CVE-2014-9646 | Unquoted Windows search path vulnerability in the GoogleChromeDistribu ... |
| CVE-2014-8147 | The resolveImplicitLevels function in common/ubidi.c in the Unicode Bi ... |
| CVE-2014-8146 | The resolveImplicitLevels function in common/ubidi.c in the Unicode Bi ... |
| CVE-2014-7967 | Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, a ... |
| CVE-2014-7948 | The AppCacheUpdateJob::URLFetcher::OnResponseStarted function in conte ... |
| CVE-2014-7947 | OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0. ... |
| CVE-2014-7946 | The RenderTable::simplifiedNormalFlowLayout function in core/rendering ... |
| CVE-2014-7945 | OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0. ... |
| CVE-2014-7944 | The sycc422_to_rgb function in fxcodec/codec/fx_codec_jpx_opj.cpp in P ... |
| CVE-2014-7943 | Skia, as used in Google Chrome before 40.0.2214.91, allows remote atta ... |
| CVE-2014-7942 | The Fonts implementation in Google Chrome before 40.0.2214.91 does not ... |
| CVE-2014-7941 | The SelectionOwner::ProcessTarget function in ui/base/x/selection_owne ... |
| CVE-2014-7940 | The collator implementation in i18n/ucol.cpp in International Componen ... |
| CVE-2014-7939 | Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 ... |
| CVE-2014-7938 | The Fonts implementation in Google Chrome before 40.0.2214.91 allows r ... |
| CVE-2014-7937 | Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before ... |
| CVE-2014-7936 | Use-after-free vulnerability in the ZoomBubbleView::Close function in ... |
| CVE-2014-7935 | Use-after-free vulnerability in browser/speech/tts_message_filter.cc i ... |
| CVE-2014-7934 | Use-after-free vulnerability in the DOM implementation in Blink, as us ... |
| CVE-2014-7933 | Use-after-free vulnerability in the matroska_read_seek function in lib ... |
| CVE-2014-7932 | Use-after-free vulnerability in the Element::detach function in core/d ... |
| CVE-2014-7931 | factory.cc in Google V8, as used in Google Chrome before 40.0.2214.91, ... |
| CVE-2014-7930 | Use-after-free vulnerability in core/events/TreeScopeEventContext.cpp ... |
| CVE-2014-7929 | Use-after-free vulnerability in the HTMLScriptElement::didMoveToNewDoc ... |
| CVE-2014-7928 | hydrogen.cc in Google V8, as used Google Chrome before 40.0.2214.91, d ... |
| CVE-2014-7927 | The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-l ... |
| CVE-2014-7926 | The Regular Expressions package in International Components for Unicod ... |
| CVE-2014-7925 | Use-after-free vulnerability in the WebAudio implementation in Blink, ... |
| CVE-2014-7924 | Use-after-free vulnerability in the IndexedDB implementation in Google ... |
| CVE-2014-7923 | The Regular Expressions package in International Components for Unicod ... |
| CVE-2014-7910 | Multiple unspecified vulnerabilities in Google Chrome before 39.0.2171 ... |
| CVE-2014-7909 | effects/SkDashPathEffect.cpp in Skia, as used in Google Chrome before ... |
| CVE-2014-7908 | Multiple integer overflows in the CheckMov function in media/base/cont ... |
| CVE-2014-7907 | Multiple use-after-free vulnerabilities in modules/screen_orientation/ ... |
| CVE-2014-7906 | Use-after-free vulnerability in the Pepper plugins in Google Chrome be ... |
| CVE-2014-7905 | Google Chrome before 39.0.2171.65 on Android does not prevent navigati ... |
| CVE-2014-7904 | Buffer overflow in Skia, as used in Google Chrome before 39.0.2171.65, ... |
| CVE-2014-7903 | Buffer overflow in OpenJPEG before r2911 in PDFium, as used in Google ... |
| CVE-2014-7902 | Use-after-free vulnerability in PDFium, as used in Google Chrome befor ... |
| CVE-2014-7901 | Integer overflow in the opj_t2_read_packet_data function in fxcodec/fx ... |
| CVE-2014-7900 | Use-after-free vulnerability in the CPDF_Parser::IsLinearizedFile func ... |
| CVE-2014-7899 | Google Chrome before 38.0.2125.101 allows remote attackers to spoof th ... |
| CVE-2014-3803 | The SpeechInput feature in Blink, as used in Google Chrome before 35.0 ... |
| CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... |
| CVE-2014-3201 | core/rendering/compositing/RenderLayerCompositor.cpp in Blink, as used ... |
| CVE-2014-3200 | Multiple unspecified vulnerabilities in Google Chrome before 38.0.2125 ... |
| CVE-2014-3199 | The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the ... |
| CVE-2014-3198 | The Instance::HandleInputEvent function in pdf/instance.cc in the PDFi ... |
| CVE-2014-3197 | The NavigationScheduler::schedulePageBlock function in core/loader/Nav ... |
| CVE-2014-3196 | base/memory/shared_memory_win.cc in Google Chrome before 38.0.2125.101 ... |
| CVE-2014-3195 | Google V8, as used in Google Chrome before 38.0.2125.101, does not pro ... |
| CVE-2014-3194 | Use-after-free vulnerability in the Web Workers implementation in Goog ... |
| CVE-2014-3193 | The SessionService::GetLastSession function in browser/sessions/sessio ... |
| CVE-2014-3192 | Use-after-free vulnerability in the ProcessingInstruction::setXSLStyle ... |
| CVE-2014-3191 | Use-after-free vulnerability in Blink, as used in Google Chrome before ... |
| CVE-2014-3190 | Use-after-free vulnerability in the Event::currentTarget function in c ... |
| CVE-2014-3189 | The chrome_pdf::CopyImage function in pdf/draw_utils.cc in the PDFium ... |
| CVE-2014-3188 | Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 ... |
| CVE-2014-3187 | Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS ... |
| CVE-2014-3179 | Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062 ... |
| CVE-2014-3178 | Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in ... |
| CVE-2014-3177 | Google Chrome before 37.0.2062.94 does not properly handle the interac ... |
| CVE-2014-3176 | Google Chrome before 37.0.2062.94 does not properly handle the interac ... |
| CVE-2014-3175 | Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062 ... |
| CVE-2014-3174 | modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementati ... |
| CVE-2014-3173 | The WebGL implementation in Google Chrome before 37.0.2062.94 does not ... |
| CVE-2014-3172 | The Debugger extension API in browser/extensions/api/debugger/debugger ... |
| CVE-2014-3171 | Use-after-free vulnerability in the V8 bindings in Blink, as used in G ... |
| CVE-2014-3170 | extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 ... |
| CVE-2014-3169 | Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM ... |
| CVE-2014-3168 | Use-after-free vulnerability in the SVG implementation in Blink, as us ... |
| CVE-2014-3167 | Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985 ... |
| CVE-2014-3166 | The Public Key Pinning (PKP) implementation in Google Chrome before 36 ... |
| CVE-2014-3165 | Use-after-free vulnerability in modules/websockets/WorkerThreadableWeb ... |
| CVE-2014-3162 | Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985 ... |
| CVE-2014-3160 | The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher ... |
| CVE-2014-3157 | Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer f ... |
| CVE-2014-3156 | Buffer overflow in the clipboard implementation in Google Chrome befor ... |
| CVE-2014-3155 | net/spdy/spdy_write_queue.cc in the SPDY implementation in Google Chro ... |
| CVE-2014-3154 | Use-after-free vulnerability in the ChildThread::Shutdown function in ... |
| CVE-2014-3152 | Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm ... |
| CVE-2014-1749 | Multiple unspecified vulnerabilities in Google Chrome before 35.0.1916 ... |
| CVE-2014-1748 | The ScrollView::paint function in platform/scroll/ScrollView.cpp in Bl ... |
| CVE-2014-1747 | Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeC ... |
| CVE-2014-1746 | The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_ ... |
| CVE-2014-1745 | Use-after-free vulnerability in the SVG implementation in Blink, as us ... |
| CVE-2014-1744 | Integer overflow in the AudioInputRendererHost::OnCreateStream functio ... |
| CVE-2014-1743 | Use-after-free vulnerability in the StyleElement::removedFromDocument ... |
| CVE-2014-1742 | Use-after-free vulnerability in the FrameSelection::updateAppearance f ... |
| CVE-2014-1741 | Multiple integer overflows in the replace-data functionality in the Ch ... |
| CVE-2014-1740 | Multiple use-after-free vulnerabilities in net/websockets/websocket_jo ... |
| CVE-2014-1736 | Integer overflow in api.cc in Google V8, as used in Google Chrome befo ... |
| CVE-2014-1735 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.33, a ... |
| CVE-2014-1734 | Multiple unspecified vulnerabilities in Google Chrome before 34.0.1847 ... |
| CVE-2014-1733 | The PointerCompare function in codegen.cc in Seccomp-BPF, as used in G ... |
| CVE-2014-1732 | Use-after-free vulnerability in browser/ui/views/speech_recognition_bu ... |
| CVE-2014-1731 | core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as ... |
| CVE-2014-1730 | Google V8, as used in Google Chrome before 34.0.1847.131 on Windows an ... |
| CVE-2014-1729 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.22, a ... |
| CVE-2014-1728 | Multiple unspecified vulnerabilities in Google Chrome before 34.0.1847 ... |
| CVE-2014-1727 | Use-after-free vulnerability in content/renderer/renderer_webcolorchoo ... |
| CVE-2014-1726 | The drag implementation in Google Chrome before 34.0.1847.116 allows u ... |
| CVE-2014-1725 | The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as ... |
| CVE-2014-1724 | Use-after-free vulnerability in Free(b)soft Laboratory Speech Dispatch ... |
| CVE-2014-1723 | The UnescapeURLWithOffsetsImpl function in net/base/escape.cc in Googl ... |
| CVE-2014-1722 | Use-after-free vulnerability in the RenderBlock::addChildIgnoringAnony ... |
| CVE-2014-1721 | Google V8, as used in Google Chrome before 34.0.1847.116, does not pro ... |
| CVE-2014-1720 | Use-after-free vulnerability in the HTMLBodyElement::insertedInto func ... |
| CVE-2014-1719 | Use-after-free vulnerability in the WebSharedWorkerStub::OnTerminateWo ... |
| CVE-2014-1718 | Integer overflow in the SoftwareFrameManager::SwapToNewFrame function ... |
| CVE-2014-1717 | Google V8, as used in Google Chrome before 34.0.1847.116, does not pro ... |
| CVE-2014-1716 | Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype f ... |
| CVE-2014-1715 | Directory traversal vulnerability in Google Chrome before 33.0.1750.15 ... |
| CVE-2014-1714 | The ScopedClipboardWriter::WritePickledData function in ui/base/clipbo ... |
| CVE-2014-1713 | Use-after-free vulnerability in the AttributeSetter function in bindin ... |
| CVE-2014-1705 | Google V8, as used in Google Chrome before 33.0.1750.152 on OS X and L ... |
| CVE-2014-1704 | Multiple unspecified vulnerabilities in Google V8 before 3.23.17.18, a ... |
| CVE-2014-1703 | Use-after-free vulnerability in the WebSocketDispatcherHost::SendOrDro ... |
| CVE-2014-1702 | Use-after-free vulnerability in the DatabaseThread::cleanupDatabaseThr ... |
| CVE-2014-1701 | The GenerateFunction function in bindings/scripts/code_generator_v8.pm ... |
| CVE-2014-1700 | Use-after-free vulnerability in modules/speech/SpeechSynthesis.cpp in ... |
| CVE-2014-1681 | Multiple unspecified vulnerabilities in Google Chrome before 32.0.1700 ... |
| CVE-2013-6802 | Google Chrome before 31.0.1650.57 allows remote attackers to bypass in ... |
| CVE-2013-6668 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, a ... |
| CVE-2013-6667 | Multiple unspecified vulnerabilities in Google Chrome before 33.0.1750 ... |
| CVE-2013-6666 | The PepperFlashRendererHost::OnNavigate function in renderer/pepper/pe ... |
| CVE-2013-6665 | Heap-based buffer overflow in the ResourceProvider::InitializeSoftware ... |
| CVE-2013-6664 | Use-after-free vulnerability in the FormAssociatedElement::formRemoved ... |
| CVE-2013-6663 | Use-after-free vulnerability in the SVGImage::setContainerSize functio ... |
| CVE-2013-6661 | Multiple unspecified vulnerabilities in Google Chrome before 33.0.1750 ... |
| CVE-2013-6660 | The drag-and-drop implementation in Google Chrome before 33.0.1750.117 ... |
| CVE-2013-6659 | The SSLClientSocketNSS::Core::OwnAuthCertHandler function in net/socke ... |
| CVE-2013-6658 | Multiple use-after-free vulnerabilities in the layout implementation i ... |
| CVE-2013-6657 | core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used i ... |
| CVE-2013-6656 | The XSSAuditor::init function in core/html/parser/XSSAuditor.cpp in th ... |
| CVE-2013-6655 | Use-after-free vulnerability in Blink, as used in Google Chrome before ... |
| CVE-2013-6654 | The SVGAnimateElement::calculateAnimatedValue function in core/svg/SVG ... |
| CVE-2013-6653 | Use-after-free vulnerability in the web contents implementation in Goo ... |
| CVE-2013-6652 | Directory traversal vulnerability in sandbox/win/src/named_pipe_dispat ... |
| CVE-2013-6650 | The StoreBuffer::ExemptPopularPages function in store-buffer.cc in Goo ... |
| CVE-2013-6649 | Use-after-free vulnerability in the RenderSVGImage::paint function in ... |
| CVE-2013-6647 | A use-after-free in AnimationController::endAnimationUpdate in Google ... |
| CVE-2013-6646 | Use-after-free vulnerability in the Web Workers implementation in Goog ... |
| CVE-2013-6645 | Use-after-free vulnerability in the OnWindowRemovingFromRootWindow fun ... |
| CVE-2013-6644 | Multiple unspecified vulnerabilities in Google Chrome before 32.0.1700 ... |
| CVE-2013-6643 | The OneClickSigninBubbleView::WindowClosing function in browser/ui/vie ... |
| CVE-2013-6642 | Google Chrome through 32.0.1700.23 on Android allows remote attackers ... |
| CVE-2013-6641 | Use-after-free vulnerability in the FormAssociatedElement::formRemoved ... |
| CVE-2013-6640 | The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc ... |
| CVE-2013-6639 | The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc ... |
| CVE-2013-6638 | Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, ... |
| CVE-2013-6637 | Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650 ... |
| CVE-2013-6636 | The FrameLoader::notifyIfInitialDocumentAccessed function in core/load ... |
| CVE-2013-6635 | Use-after-free vulnerability in the editing implementation in Blink, a ... |
| CVE-2013-6634 | The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui ... |
| CVE-2013-6632 | Integer overflow in Google Chrome before 31.0.1650.57 allows remote at ... |
| CVE-2013-6631 | Use-after-free vulnerability in the Channel::SendRTCPPacket function i ... |
| CVE-2013-6630 | The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as ... |
| CVE-2013-6629 | The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-t ... |
| CVE-2013-6628 | net/socket/ssl_client_socket_nss.cc in the TLS implementation in Googl ... |
| CVE-2013-6627 | net/http/http_stream_parser.cc in Google Chrome before 31.0.1650.48 do ... |
| CVE-2013-6626 | The WebContentsImpl::AttachInterstitialPage function in content/browse ... |
| CVE-2013-6625 | Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, a ... |
| CVE-2013-6624 | Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allo ... |
| CVE-2013-6623 | The SVG implementation in Blink, as used in Google Chrome before 31.0. ... |
| CVE-2013-6622 | Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocu ... |
| CVE-2013-6621 | Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allo ... |
| CVE-2013-6166 | Google Chrome before 29 sends HTTP Cookie headers without first valida ... |
| CVE-2013-2931 | Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650 ... |
| CVE-2013-2928 | Multiple unspecified vulnerabilities in Google Chrome before 30.0.1599 ... |
| CVE-2013-2927 | Use-after-free vulnerability in the HTMLFormElement::prepareForSubmiss ... |
| CVE-2013-2926 | Use-after-free vulnerability in the IndentOutdentCommand::tryIndenting ... |
| CVE-2013-2925 | Use-after-free vulnerability in core/xml/XMLHttpRequest.cpp in Blink, ... |
| CVE-2013-2924 | Use-after-free vulnerability in International Components for Unicode ( ... |
| CVE-2013-2923 | Multiple unspecified vulnerabilities in Google Chrome before 30.0.1599 ... |
| CVE-2013-2922 | Use-after-free vulnerability in core/html/HTMLTemplateElement.cpp in B ... |
| CVE-2013-2921 | Double free vulnerability in the ResourceFetcher::didLoadResource func ... |
| CVE-2013-2920 | The DoResolveRelativeHost function in url/url_canon_relative.cc in Goo ... |
| CVE-2013-2919 | Google V8, as used in Google Chrome before 30.0.1599.66, allows remote ... |
| CVE-2013-2918 | Use-after-free vulnerability in the RenderBlock::collapseAnonymousBloc ... |
| CVE-2013-2917 | The ReverbConvolverStage::ReverbConvolverStage function in core/platfo ... |
| CVE-2013-2916 | Blink, as used in Google Chrome before 30.0.1599.66, allows remote att ... |
| CVE-2013-2915 | Google Chrome before 30.0.1599.66 preserves pending NavigationEntry ob ... |
| CVE-2013-2914 | Use-after-free vulnerability in the color-chooser dialog in Google Chr ... |
| CVE-2013-2913 | Use-after-free vulnerability in the XMLDocumentParser::append function ... |
| CVE-2013-2912 | Use-after-free vulnerability in the PepperInProcessRouter::SendToHost ... |
| CVE-2013-2911 | Use-after-free vulnerability in the XSLStyleSheet::compileStyleSheet f ... |
| CVE-2013-2910 | Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceN ... |
| CVE-2013-2909 | Use-after-free vulnerability in Blink, as used in Google Chrome before ... |
| CVE-2013-2908 | Google Chrome before 30.0.1599.66 uses incorrect function calls to det ... |
| CVE-2013-2907 | The Window.prototype object implementation in Google Chrome before 30. ... |
| CVE-2013-2906 | Multiple race conditions in the Web Audio implementation in Blink, as ... |
| CVE-2013-2905 | The SharedMemory::Create function in memory/shared_memory_posix.cc in ... |
| CVE-2013-2904 | Use-after-free vulnerability in the Document::finishedParsing function ... |
| CVE-2013-2903 | Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocu ... |
| CVE-2013-2902 | Use-after-free vulnerability in the XSLT ProcessingInstruction impleme ... |
| CVE-2013-2901 | Multiple integer overflows in (1) libGLESv2/renderer/Renderer9.cpp and ... |
| CVE-2013-2900 | The FilePath::ReferencesParent function in files/file_path.cc in Googl ... |
| CVE-2013-2887 | Multiple unspecified vulnerabilities in Google Chrome before 29.0.1547 ... |
| CVE-2013-2886 | Multiple unspecified vulnerabilities in Google Chrome before 28.0.1500 ... |
| CVE-2013-2885 | Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allo ... |
| CVE-2013-2884 | Use-after-free vulnerability in the DOM implementation in Google Chrom ... |
| CVE-2013-2883 | Use-after-free vulnerability in Google Chrome before 28.0.1500.95 allo ... |
| CVE-2013-2882 | Google V8, as used in Google Chrome before 28.0.1500.95, allows remote ... |
| CVE-2013-2881 | Google Chrome before 28.0.1500.95 does not properly handle frames, whi ... |
| CVE-2013-2880 | Multiple unspecified vulnerabilities in Google Chrome before 28.0.1500 ... |
| CVE-2013-2879 | Google Chrome before 28.0.1500.71 does not properly determine the circ ... |
| CVE-2013-2878 | Google Chrome before 28.0.1500.71 allows remote attackers to cause a d ... |
| CVE-2013-2877 | parser.c in libxml2 before 2.9.0, as used in Google Chrome before 28.0 ... |
| CVE-2013-2876 | browser/extensions/api/tabs/tabs_api.cc in Google Chrome before 28.0.1 ... |
| CVE-2013-2875 | core/rendering/svg/SVGInlineTextBox.cpp in the SVG implementation in B ... |
| CVE-2013-2874 | Google Chrome before 28.0.1500.71 on Windows, when an Nvidia GPU is us ... |
| CVE-2013-2873 | Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allo ... |
| CVE-2013-2872 | Google Chrome before 28.0.1500.71 on Mac OS X does not ensure a suffic ... |
| CVE-2013-2871 | Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allo ... |
| CVE-2013-2870 | Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allo ... |
| CVE-2013-2869 | Google Chrome before 28.0.1500.71 allows remote attackers to cause a d ... |
| CVE-2013-2868 | common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 ... |
| CVE-2013-2867 | Google Chrome before 28.0.1500.71 does not properly prevent pop-under ... |
| CVE-2013-2866 | The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Go ... |
| CVE-2013-2865 | Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453 ... |
| CVE-2013-2864 | The PDF functionality in Google Chrome before 27.0.1453.110 allows rem ... |
| CVE-2013-2863 | Google Chrome before 27.0.1453.110 does not properly handle SSL socket ... |
| CVE-2013-2862 | Skia, as used in Google Chrome before 27.0.1453.110, does not properly ... |
| CVE-2013-2861 | Use-after-free vulnerability in the SVG implementation in Google Chrom ... |
| CVE-2013-2860 | Use-after-free vulnerability in Google Chrome before 27.0.1453.110 all ... |
| CVE-2013-2859 | Google Chrome before 27.0.1453.110 allows remote attackers to bypass t ... |
| CVE-2013-2858 | Use-after-free vulnerability in the HTML5 Audio implementation in Goog ... |
| CVE-2013-2857 | Use-after-free vulnerability in Google Chrome before 27.0.1453.110 all ... |
| CVE-2013-2856 | Use-after-free vulnerability in Google Chrome before 27.0.1453.110 all ... |
| CVE-2013-2855 | The Developer Tools API in Google Chrome before 27.0.1453.110 allows r ... |
| CVE-2013-2854 | Google Chrome before 27.0.1453.110 on Windows provides an incorrect ha ... |
| CVE-2013-2853 | The HTTPS implementation in Google Chrome before 28.0.1500.71 does not ... |
| CVE-2013-2849 | Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome b ... |
| CVE-2013-2848 | The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remot ... |
| CVE-2013-2847 | Race condition in the workers implementation in Google Chrome before 2 ... |
| CVE-2013-2846 | Use-after-free vulnerability in the media loader in Google Chrome befo ... |
| CVE-2013-2845 | The Web Audio implementation in Google Chrome before 27.0.1453.93 allo ... |
| CVE-2013-2844 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2013-2843 | Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allo ... |
| CVE-2013-2842 | Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allo ... |
| CVE-2013-2841 | Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allo ... |
| CVE-2013-2840 | Use-after-free vulnerability in the media loader in Google Chrome befo ... |
| CVE-2013-2839 | Google Chrome before 27.0.1453.93 does not properly perform a cast of ... |
| CVE-2013-2838 | Google V8, as used in Google Chrome before 27.0.1453.93, allows remote ... |
| CVE-2013-2837 | Use-after-free vulnerability in the SVG implementation in Google Chrom ... |
| CVE-2013-2836 | Multiple unspecified vulnerabilities in Google Chrome before 27.0.1453 ... |
| CVE-2013-2268 | Unspecified vulnerability in the MathML implementation in WebKit in Go ... |
| CVE-2013-0926 | Google Chrome before 26.0.1410.43 does not properly handle active cont ... |
| CVE-2013-0925 | Google Chrome before 26.0.1410.43 does not ensure that an extension ha ... |
| CVE-2013-0924 | The extension functionality in Google Chrome before 26.0.1410.43 does ... |
| CVE-2013-0923 | The USB Apps API in Google Chrome before 26.0.1410.43 allows remote at ... |
| CVE-2013-0922 | Google Chrome before 26.0.1410.43 does not properly restrict brute-for ... |
| CVE-2013-0921 | The Isolated Sites feature in Google Chrome before 26.0.1410.43 does n ... |
| CVE-2013-0920 | Use-after-free vulnerability in the extension bookmarks API in Google ... |
| CVE-2013-0919 | Use-after-free vulnerability in Google Chrome before 26.0.1410.43 on L ... |
| CVE-2013-0918 | Google Chrome before 26.0.1410.43 does not prevent navigation to devel ... |
| CVE-2013-0917 | The URL loader in Google Chrome before 26.0.1410.43 allows remote atta ... |
| CVE-2013-0916 | Use-after-free vulnerability in the Web Audio implementation in Google ... |
| CVE-2013-0912 | WebKit in Google Chrome before 25.0.1364.160 allows remote attackers t ... |
| CVE-2013-0911 | Directory traversal vulnerability in Google Chrome before 25.0.1364.15 ... |
| CVE-2013-0910 | Google Chrome before 25.0.1364.152 does not properly manage the intera ... |
| CVE-2013-0909 | The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote at ... |
| CVE-2013-0908 | Google Chrome before 25.0.1364.152 does not properly manage bindings o ... |
| CVE-2013-0907 | Race condition in Google Chrome before 25.0.1364.152 allows remote att ... |
| CVE-2013-0906 | The IndexedDB implementation in Google Chrome before 25.0.1364.152 all ... |
| CVE-2013-0905 | Use-after-free vulnerability in Google Chrome before 25.0.1364.152 all ... |
| CVE-2013-0904 | The Web Audio implementation in Google Chrome before 25.0.1364.152 all ... |
| CVE-2013-0903 | Use-after-free vulnerability in Google Chrome before 25.0.1364.152 all ... |
| CVE-2013-0902 | Use-after-free vulnerability in the frame-loader implementation in Goo ... |
| CVE-2013-0900 | Race condition in the International Components for Unicode (ICU) funct ... |
| CVE-2013-0899 | Integer overflow in the padding implementation in the opus_packet_pars ... |
| CVE-2013-0898 | Use-after-free vulnerability in Google Chrome before 25.0.1364.97 on W ... |
| CVE-2013-0897 | Off-by-one error in the PDF functionality in Google Chrome before 25.0 ... |
| CVE-2013-0896 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0895 | Google Chrome before 25.0.1364.97 on Linux, and before 25.0.1364.99 on ... |
| CVE-2013-0894 | Buffer overflow in the vorbis_parse_setup_hdr_floors function in the V ... |
| CVE-2013-0893 | Race condition in Google Chrome before 25.0.1364.97 on Windows and Lin ... |
| CVE-2013-0892 | Multiple unspecified vulnerabilities in the IPC layer in Google Chrome ... |
| CVE-2013-0891 | Integer overflow in Google Chrome before 25.0.1364.97 on Windows and L ... |
| CVE-2013-0890 | Multiple unspecified vulnerabilities in the IPC layer in Google Chrome ... |
| CVE-2013-0889 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0888 | Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linu ... |
| CVE-2013-0887 | The developer-tools process in Google Chrome before 25.0.1364.97 on Wi ... |
| CVE-2013-0886 | Google Chrome before 25.0.1364.99 on Mac OS X does not properly implem ... |
| CVE-2013-0885 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0884 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0883 | Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linu ... |
| CVE-2013-0882 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0881 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0880 | Use-after-free vulnerability in Google Chrome before 25.0.1364.97 on W ... |
| CVE-2013-0879 | Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25. ... |
| CVE-2013-0843 | content/renderer/media/webrtc_audio_renderer.cc in Google Chrome befor ... |
| CVE-2013-0842 | Google Chrome before 24.0.1312.56 does not properly handle %00 charact ... |
| CVE-2013-0841 | Array index error in the content-blocking functionality in Google Chro ... |
| CVE-2013-0840 | Google Chrome before 24.0.1312.56 does not validate URLs during the op ... |
| CVE-2013-0839 | Use-after-free vulnerability in Google Chrome before 24.0.1312.56 allo ... |
| CVE-2013-0838 | Google Chrome before 24.0.1312.52 on Linux uses weak permissions for s ... |
| CVE-2013-0837 | Google Chrome before 24.0.1312.52 allows remote attackers to cause a d ... |
| CVE-2013-0836 | Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.5 ... |
| CVE-2013-0835 | Unspecified vulnerability in the Geolocation implementation in Google ... |
| CVE-2013-0834 | Google Chrome before 24.0.1312.52 allows remote attackers to cause a d ... |
| CVE-2013-0833 | Google Chrome before 24.0.1312.52 allows remote attackers to cause a d ... |
| CVE-2013-0832 | Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allo ... |
| CVE-2013-0831 | Directory traversal vulnerability in Google Chrome before 24.0.1312.52 ... |
| CVE-2013-0830 | The IPC layer in Google Chrome before 24.0.1312.52 on Windows omits a ... |
| CVE-2013-0829 | Google Chrome before 24.0.1312.52 does not properly maintain database ... |
| CVE-2013-0828 | The PDF functionality in Google Chrome before 24.0.1312.52 does not pr ... |
| CVE-2012-5376 | The Inter-process Communication (IPC) implementation in Google Chrome ... |
| CVE-2012-5157 | Google Chrome before 24.0.1312.52 does not properly handle image data ... |
| CVE-2012-5156 | Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allo ... |
| CVE-2012-5155 | Google Chrome before 24.0.1312.52 on Mac OS X does not use an appropri ... |
| CVE-2012-5154 | Integer overflow in Google Chrome before 24.0.1312.52 on Windows allow ... |
| CVE-2012-5153 | Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.5 ... |
| CVE-2012-5152 | Google Chrome before 24.0.1312.52 allows remote attackers to cause a d ... |
| CVE-2012-5151 | Integer overflow in Google Chrome before 24.0.1312.52 allows remote at ... |
| CVE-2012-5150 | Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allo ... |
| CVE-2012-5149 | Integer overflow in the audio IPC layer in Google Chrome before 24.0.1 ... |
| CVE-2012-5148 | The hyphenation functionality in Google Chrome before 24.0.1312.52 doe ... |
| CVE-2012-5147 | Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allo ... |
| CVE-2012-5146 | Google Chrome before 24.0.1312.52 allows remote attackers to bypass th ... |
| CVE-2012-5145 | Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allo ... |
| CVE-2012-5144 | Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0. ... |
| CVE-2012-5143 | Integer overflow in Google Chrome before 23.0.1271.97 allows remote at ... |
| CVE-2012-5142 | Google Chrome before 23.0.1271.97 does not properly handle history nav ... |
| CVE-2012-5141 | Google Chrome before 23.0.1271.97 does not properly restrict instantia ... |
| CVE-2012-5140 | Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allo ... |
| CVE-2012-5139 | Use-after-free vulnerability in Google Chrome before 23.0.1271.97 allo ... |
| CVE-2012-5138 | Google Chrome before 23.0.1271.95 does not properly handle file paths, ... |
| CVE-2012-5137 | Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allo ... |
| CVE-2012-5136 | Google Chrome before 23.0.1271.91 does not properly perform a cast of ... |
| CVE-2012-5135 | Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allo ... |
| CVE-2012-5133 | Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allo ... |
| CVE-2012-5132 | Google Chrome before 23.0.1271.91 allows remote attackers to cause a d ... |
| CVE-2012-5131 | Google Chrome before 23.0.1271.91 on Mac OS X does not properly mitiga ... |
| CVE-2012-5130 | Skia, as used in Google Chrome before 23.0.1271.91, allows remote atta ... |
| CVE-2012-5127 | Integer overflow in Google Chrome before 23.0.1271.64 allows remote at ... |
| CVE-2012-5126 | Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allo ... |
| CVE-2012-5125 | Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allo ... |
| CVE-2012-5124 | Google Chrome before 23.0.1271.64 does not properly handle textures, w ... |
| CVE-2012-5123 | Skia, as used in Google Chrome before 23.0.1271.64, allows remote atta ... |
| CVE-2012-5122 | Google Chrome before 23.0.1271.64 does not properly perform a cast of ... |
| CVE-2012-5121 | Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allo ... |
| CVE-2012-5119 | Race condition in Pepper, as used in Google Chrome before 23.0.1271.64 ... |
| CVE-2012-5118 | Google Chrome before 23.0.1271.64 on Mac OS X does not properly valida ... |
| CVE-2012-5117 | Google Chrome before 23.0.1271.64 does not properly restrict the loadi ... |
| CVE-2012-5116 | Use-after-free vulnerability in Google Chrome before 23.0.1271.64 allo ... |
| CVE-2012-5115 | Google Chrome before 23.0.1271.64 on Mac OS X does not properly mitiga ... |
| CVE-2012-5112 | Use-after-free vulnerability in the SVG implementation in WebKit, as u ... |
| CVE-2012-5111 | Google Chrome before 22.0.1229.92 does not monitor for crashes of Pepp ... |
| CVE-2012-5110 | The compositor in Google Chrome before 22.0.1229.92 allows remote atta ... |
| CVE-2012-5109 | The International Components for Unicode (ICU) functionality in Google ... |
| CVE-2012-5108 | Race condition in Google Chrome before 22.0.1229.92 allows remote atta ... |
| CVE-2012-4930 | The SPDY protocol 3 and earlier, as used in Mozilla Firefox, Google Ch ... |
| CVE-2012-4929 | The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google C ... |
| CVE-2012-4909 | Google Chrome before 18.0.1025308 on Android allows remote attackers t ... |
| CVE-2012-4908 | Google Chrome before 18.0.1025308 on Android allows remote attackers t ... |
| CVE-2012-4907 | Google Chrome before 18.0.1025308 on Android does not properly restric ... |
| CVE-2012-4906 | Google Chrome before 18.0.1025308 on Android does not properly restric ... |
| CVE-2012-4905 | Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0. ... |
| CVE-2012-4904 | Cross-application scripting vulnerability in Google Chrome before 18.0 ... |
| CVE-2012-4903 | Google Chrome before 18.0.1025308 on Android does not properly restric ... |
| CVE-2012-2900 | Skia, as used in Google Chrome before 22.0.1229.92, does not properly ... |
| CVE-2012-2899 | Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls ... |
| CVE-2012-2898 | Google Chrome before 21.0.1180.82 on iOS on iPad devices allows remote ... |
| CVE-2012-2897 | The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows S ... |
| CVE-2012-2896 | Integer overflow in the WebGL implementation in Google Chrome before 2 ... |
| CVE-2012-2895 | The PDF functionality in Google Chrome before 22.0.1229.79 allows remo ... |
| CVE-2012-2894 | Google Chrome before 22.0.1229.79 does not properly handle graphics-co ... |
| CVE-2012-2893 | Double free vulnerability in libxslt, as used in Google Chrome before ... |
| CVE-2012-2892 | Unspecified vulnerability in Google Chrome before 22.0.1229.79 allows ... |
| CVE-2012-2891 | The IPC implementation in Google Chrome before 22.0.1229.79 allows att ... |
| CVE-2012-2890 | Use-after-free vulnerability in the PDF functionality in Google Chrome ... |
| CVE-2012-2889 | Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0. ... |
| CVE-2012-2888 | Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allo ... |
| CVE-2012-2887 | Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allo ... |
| CVE-2012-2886 | Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0. ... |
| CVE-2012-2885 | Double free vulnerability in Google Chrome before 22.0.1229.79 allows ... |
| CVE-2012-2884 | Skia, as used in Google Chrome before 22.0.1229.79, allows remote atta ... |
| CVE-2012-2883 | Skia, as used in Google Chrome before 22.0.1229.79, allows remote atta ... |
| CVE-2012-2882 | FFmpeg, as used in Google Chrome before 22.0.1229.79, does not properl ... |
| CVE-2012-2881 | Google Chrome before 22.0.1229.79 does not properly handle plug-ins, w ... |
| CVE-2012-2880 | Race condition in Google Chrome before 22.0.1229.79 allows remote atta ... |
| CVE-2012-2879 | Google Chrome before 22.0.1229.79 allows remote attackers to cause a d ... |
| CVE-2012-2878 | Use-after-free vulnerability in Google Chrome before 22.0.1229.79 allo ... |
| CVE-2012-2877 | The extension system in Google Chrome before 22.0.1229.79 does not pro ... |
| CVE-2012-2876 | Buffer overflow in the SSE2 optimization functionality in Google Chrom ... |
| CVE-2012-2875 | Multiple unspecified vulnerabilities in the PDF functionality in Googl ... |
| CVE-2012-2874 | Skia, as used in Google Chrome before 22.0.1229.79, allows remote atta ... |
| CVE-2012-2872 | Cross-site scripting (XSS) vulnerability in an SSL interstitial page i ... |
| CVE-2012-2871 | libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.11 ... |
| CVE-2012-2870 | libxslt 1.1.26 and earlier, as used in Google Chrome before 21.0.1180. ... |
| CVE-2012-2869 | Google Chrome before 21.0.1180.89 does not properly load URLs, which a ... |
| CVE-2012-2868 | Race condition in Google Chrome before 21.0.1180.89 allows remote atta ... |
| CVE-2012-2867 | The SPDY implementation in Google Chrome before 21.0.1180.89 allows re ... |
| CVE-2012-2866 | Google Chrome before 21.0.1180.89 does not properly perform a cast of ... |
| CVE-2012-2865 | Google Chrome before 21.0.1180.89 does not properly perform line break ... |
| CVE-2012-2863 | The PDF functionality in Google Chrome before 21.0.1180.75 allows remo ... |
| CVE-2012-2862 | Use-after-free vulnerability in the PDF functionality in Google Chrome ... |
| CVE-2012-2860 | The date-picker implementation in Google Chrome before 21.0.1180.57 on ... |
| CVE-2012-2859 | Google Chrome before 21.0.1180.57 on Linux does not properly handle ta ... |
| CVE-2012-2858 | Buffer overflow in the WebP decoder in Google Chrome before 21.0.1180. ... |
| CVE-2012-2857 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) DOM i ... |
| CVE-2012-2856 | The PDF functionality in Google Chrome before 21.0.1180.57 on Mac OS X ... |
| CVE-2012-2855 | Use-after-free vulnerability in the PDF functionality in Google Chrome ... |
| CVE-2012-2854 | Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21 ... |
| CVE-2012-2853 | The webRequest API in Google Chrome before 21.0.1180.57 on Mac OS X an ... |
| CVE-2012-2852 | The PDF functionality in Google Chrome before 21.0.1180.57 on Mac OS X ... |
| CVE-2012-2851 | Multiple integer overflows in the PDF functionality in Google Chrome b ... |
| CVE-2012-2850 | Multiple unspecified vulnerabilities in the PDF functionality in Googl ... |
| CVE-2012-2849 | Off-by-one error in the GIF decoder in Google Chrome before 21.0.1180. ... |
| CVE-2012-2848 | The drag-and-drop implementation in Google Chrome before 21.0.1180.57 ... |
| CVE-2012-2847 | Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21 ... |
| CVE-2012-2846 | Google Chrome before 21.0.1180.57 on Linux does not properly isolate r ... |
| CVE-2012-2844 | The PDF functionality in Google Chrome before 20.0.1132.57 does not pr ... |
| CVE-2012-2843 | Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allo ... |
| CVE-2012-2842 | Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allo ... |
| CVE-2012-2834 | Integer overflow in Google Chrome before 20.0.1132.43 allows remote at ... |
| CVE-2012-2833 | Buffer overflow in the JS API in the PDF functionality in Google Chrom ... |
| CVE-2012-2832 | The image-codec implementation in the PDF functionality in Google Chro ... |
| CVE-2012-2831 | Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allo ... |
| CVE-2012-2830 | Google Chrome before 20.0.1132.43 does not properly set array values, ... |
| CVE-2012-2829 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2012-2828 | Multiple integer overflows in the PDF functionality in Google Chrome b ... |
| CVE-2012-2827 | Use-after-free vulnerability in the UI in Google Chrome before 20.0.11 ... |
| CVE-2012-2826 | Google Chrome before 20.0.1132.43 does not properly implement texture ... |
| CVE-2012-2824 | Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allo ... |
| CVE-2012-2823 | Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allo ... |
| CVE-2012-2822 | The PDF functionality in Google Chrome before 20.0.1132.43 allows remo ... |
| CVE-2012-2821 | The autofill implementation in Google Chrome before 20.0.1132.43 does ... |
| CVE-2012-2820 | Google Chrome before 20.0.1132.43 does not properly implement SVG filt ... |
| CVE-2012-2819 | The texSubImage2D implementation in the WebGL subsystem in Google Chro ... |
| CVE-2012-2818 | Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allo ... |
| CVE-2012-2817 | Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allo ... |
| CVE-2012-2816 | Google Chrome before 20.0.1132.43 on Windows does not properly isolate ... |
| CVE-2012-2815 | Google Chrome before 20.0.1132.43 allows remote attackers to obtain po ... |
| CVE-2012-2764 | Untrusted search path vulnerability in Google Chrome before 20.0.1132. ... |
| CVE-2012-1846 | Google Chrome 17.0.963.66 and earlier allows remote attackers to bypas ... |
| CVE-2012-1845 | Use-after-free vulnerability in Google Chrome 17.0.963.66 and earlier ... |
| CVE-2012-1521 | Use-after-free vulnerability in the XML parser in Google Chrome before ... |
| CVE-2011-5319 | content/renderer/device_sensors/device_motion_event_pump.cc in Google ... |
| CVE-2011-4719 | Multiple unspecified vulnerabilities in Google Chrome before 16.0.912. ... |
| CVE-2011-4691 | Google Chrome 15.0.874.121 and earlier does not prevent capture of dat ... |
| CVE-2011-4548 | Multiple unspecified vulnerabilities in Google Chrome before 16.0.912. ... |
| CVE-2011-3972 | The shader translator implementation in Google Chrome before 17.0.963. ... |
| CVE-2011-3971 | Use-after-free vulnerability in Google Chrome before 17.0.963.46 allow ... |
| CVE-2011-3969 | Use-after-free vulnerability in Google Chrome before 17.0.963.46 allow ... |
| CVE-2011-3968 | Use-after-free vulnerability in Google Chrome before 17.0.963.46 allow ... |
| CVE-2011-3967 | Unspecified vulnerability in Google Chrome before 17.0.963.46 allows r ... |
| CVE-2011-3966 | Use-after-free vulnerability in Google Chrome before 17.0.963.46 allow ... |
| CVE-2011-3965 | Google Chrome before 17.0.963.46 does not properly check signatures, w ... |
| CVE-2011-3964 | Google Chrome before 17.0.963.46 does not properly implement the drag- ... |
| CVE-2011-3963 | Google Chrome before 17.0.963.46 does not properly handle PDF FAX imag ... |
| CVE-2011-3962 | Google Chrome before 17.0.963.46 does not properly perform path clippi ... |
| CVE-2011-3961 | Race condition in Google Chrome before 17.0.963.46 allows remote attac ... |
| CVE-2011-3960 | Google Chrome before 17.0.963.46 does not properly decode audio data, ... |
| CVE-2011-3959 | Buffer overflow in the locale implementation in Google Chrome before 1 ... |
| CVE-2011-3958 | Google Chrome before 17.0.963.46 does not properly perform casts of va ... |
| CVE-2011-3957 | Use-after-free vulnerability in the garbage-collection functionality i ... |
| CVE-2011-3956 | The extension implementation in Google Chrome before 17.0.963.46 does ... |
| CVE-2011-3955 | Google Chrome before 17.0.963.46 allows remote attackers to cause a de ... |
| CVE-2011-3954 | Google Chrome before 17.0.963.46 allows remote attackers to cause a de ... |
| CVE-2011-3953 | Google Chrome before 17.0.963.46 does not prevent monitoring of the cl ... |
| CVE-2011-3928 | Use-after-free vulnerability in Google Chrome before 16.0.912.77 allow ... |
| CVE-2011-3927 | Skia, as used in Google Chrome before 16.0.912.77, does not perform al ... |
| CVE-2011-3926 | Heap-based buffer overflow in the tree builder in Google Chrome before ... |
| CVE-2011-3925 | Use-after-free vulnerability in the Safe Browsing feature in Google Ch ... |
| CVE-2011-3924 | Use-after-free vulnerability in Google Chrome before 16.0.912.77 allow ... |
| CVE-2011-3922 | Stack-based buffer overflow in Google Chrome before 16.0.912.75 allows ... |
| CVE-2011-3921 | Use-after-free vulnerability in Google Chrome before 16.0.912.75 allow ... |
| CVE-2011-3919 | Heap-based buffer overflow in libxml2, as used in Google Chrome before ... |
| CVE-2011-3917 | Stack-based buffer overflow in FileWatcher in Google Chrome before 16. ... |
| CVE-2011-3916 | Google Chrome before 16.0.912.63 does not properly handle PDF cross re ... |
| CVE-2011-3915 | Buffer overflow in Google Chrome before 16.0.912.63 allows remote atta ... |
| CVE-2011-3914 | The internationalization (aka i18n) functionality in Google V8, as use ... |
| CVE-2011-3913 | Use-after-free vulnerability in Google Chrome before 16.0.912.63 allow ... |
| CVE-2011-3912 | Use-after-free vulnerability in Google Chrome before 16.0.912.63 allow ... |
| CVE-2011-3911 | Google Chrome before 16.0.912.63 does not properly handle PDF document ... |
| CVE-2011-3910 | Google Chrome before 16.0.912.63 does not properly handle YUV video fr ... |
| CVE-2011-3909 | The Cascading Style Sheets (CSS) implementation in Google Chrome befor ... |
| CVE-2011-3908 | Google Chrome before 16.0.912.63 does not properly parse SVG documents ... |
| CVE-2011-3907 | The view-source feature in Google Chrome before 16.0.912.63 allows rem ... |
| CVE-2011-3906 | The PDF parser in Google Chrome before 16.0.912.63 allows remote attac ... |
| CVE-2011-3904 | Use-after-free vulnerability in Google Chrome before 16.0.912.63 allow ... |
| CVE-2011-3903 | Google Chrome before 16.0.912.63 does not properly perform regex match ... |
| CVE-2011-3900 | Google V8, as used in Google Chrome before 15.0.874.121, allows remote ... |
| CVE-2011-3898 | Google Chrome before 15.0.874.120, when Java Runtime Environment (JRE) ... |
| CVE-2011-3897 | Use-after-free vulnerability in Google Chrome before 15.0.874.120 allo ... |
| CVE-2011-3896 | Buffer overflow in Google Chrome before 15.0.874.120 allows remote att ... |
| CVE-2011-3895 | Heap-based buffer overflow in the Vorbis decoder in Google Chrome befo ... |
| CVE-2011-3894 | Google Chrome before 15.0.874.120 does not properly perform VP8 decodi ... |
| CVE-2011-3893 | Google Chrome before 15.0.874.120 does not properly implement the MKV ... |
| CVE-2011-3892 | Double free vulnerability in the Theora decoder in Google Chrome befor ... |
| CVE-2011-3891 | Google Chrome before 15.0.874.102 does not properly restrict access to ... |
| CVE-2011-3890 | Use-after-free vulnerability in Google Chrome before 15.0.874.102 allo ... |
| CVE-2011-3889 | Heap-based buffer overflow in the Web Audio implementation in Google C ... |
| CVE-2011-3888 | Use-after-free vulnerability in Google Chrome before 15.0.874.102 allo ... |
| CVE-2011-3887 | Google Chrome before 15.0.874.102 does not properly handle javascript: ... |
| CVE-2011-3886 | Google V8, as used in Google Chrome before 15.0.874.102, allows remote ... |
| CVE-2011-3885 | Use-after-free vulnerability in Google Chrome before 15.0.874.102 allo ... |
| CVE-2011-3884 | Google Chrome before 15.0.874.102 does not properly address timing iss ... |
| CVE-2011-3883 | Use-after-free vulnerability in Google Chrome before 15.0.874.102 allo ... |
| CVE-2011-3882 | Use-after-free vulnerability in Google Chrome before 15.0.874.102 allo ... |
| CVE-2011-3881 | WebKit, as used in Google Chrome before 15.0.874.102 and Android befor ... |
| CVE-2011-3880 | Google Chrome before 15.0.874.102 does not prevent use of an unspecifi ... |
| CVE-2011-3879 | Google Chrome before 15.0.874.102 does not prevent redirects to chrome ... |
| CVE-2011-3878 | Race condition in Google Chrome before 15.0.874.102 allows remote atta ... |
| CVE-2011-3877 | Cross-site scripting (XSS) vulnerability in the appcache internals pag ... |
| CVE-2011-3876 | Google Chrome before 15.0.874.102 does not properly handle downloading ... |
| CVE-2011-3875 | Google Chrome before 15.0.874.102 does not properly handle drag and dr ... |
| CVE-2011-3873 | Google Chrome before 14.0.835.202 does not properly implement shader t ... |
| CVE-2011-3421 | Multiple unspecified vulnerabilities in Google Chrome before 14.0.835. ... |
| CVE-2011-3420 | Multiple unspecified vulnerabilities in Google Chrome before 14.0.835. ... |
| CVE-2011-3389 | The SSL protocol, as used in certain configurations in Microsoft Windo ... |
| CVE-2011-3234 | Google Chrome before 14.0.835.163 does not properly handle boxes, whic ... |
| CVE-2011-3114 | Multiple buffer overflows in the PDF functionality in Google Chrome be ... |
| CVE-2011-3113 | The PDF functionality in Google Chrome before 19.0.1084.52 does not pr ... |
| CVE-2011-3112 | Use-after-free vulnerability in the PDF functionality in Google Chrome ... |
| CVE-2011-3110 | The PDF functionality in Google Chrome before 19.0.1084.52 allows remo ... |
| CVE-2011-3109 | Google Chrome before 19.0.1084.52 on Linux does not properly perform a ... |
| CVE-2011-3108 | Use-after-free vulnerability in Google Chrome before 19.0.1084.52 allo ... |
| CVE-2011-3107 | Google Chrome before 19.0.1084.52 does not properly implement JavaScri ... |
| CVE-2011-3106 | The WebSockets implementation in Google Chrome before 19.0.1084.52 doe ... |
| CVE-2011-3105 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2011-3104 | Skia, as used in Google Chrome before 19.0.1084.52, allows remote atta ... |
| CVE-2011-3101 | Google Chrome before 19.0.1084.46 on Linux does not properly mitigate ... |
| CVE-2011-3100 | Google Chrome before 19.0.1084.46 does not properly draw dash paths, w ... |
| CVE-2011-3099 | Use-after-free vulnerability in the PDF functionality in Google Chrome ... |
| CVE-2011-3098 | Google Chrome before 19.0.1084.46 on Windows uses an incorrect search ... |
| CVE-2011-3097 | The PDF functionality in Google Chrome before 19.0.1084.46 allows remo ... |
| CVE-2011-3096 | Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on L ... |
| CVE-2011-3095 | The OGG container in Google Chrome before 19.0.1084.46 allows remote a ... |
| CVE-2011-3094 | Google Chrome before 19.0.1084.46 does not properly handle Tibetan tex ... |
| CVE-2011-3093 | Google Chrome before 19.0.1084.46 does not properly handle glyphs, whi ... |
| CVE-2011-3091 | Use-after-free vulnerability in the IndexedDB implementation in Google ... |
| CVE-2011-3090 | Race condition in Google Chrome before 19.0.1084.46 allows remote atta ... |
| CVE-2011-3089 | Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allo ... |
| CVE-2011-3088 | Google Chrome before 19.0.1084.46 does not properly draw hairlines, wh ... |
| CVE-2011-3087 | Google Chrome before 19.0.1084.46 does not properly perform window nav ... |
| CVE-2011-3086 | Use-after-free vulnerability in Google Chrome before 19.0.1084.46 allo ... |
| CVE-2011-3085 | The Autofill feature in Google Chrome before 19.0.1084.46 does not pro ... |
| CVE-2011-3084 | Google Chrome before 19.0.1084.46 does not use a dedicated process for ... |
| CVE-2011-3083 | browser/profiles/profile_impl_io_data.cc in Google Chrome before 19.0. ... |
| CVE-2011-3081 | Use-after-free vulnerability in Google Chrome before 18.0.1025.168 all ... |
| CVE-2011-3080 | Race condition in the Inter-process Communication (IPC) implementation ... |
| CVE-2011-3079 | The Inter-process Communication (IPC) implementation in Google Chrome ... |
| CVE-2011-3078 | Use-after-free vulnerability in Google Chrome before 18.0.1025.168 all ... |
| CVE-2011-3077 | Use-after-free vulnerability in Google Chrome before 18.0.1025.151 all ... |
| CVE-2011-3076 | Use-after-free vulnerability in Google Chrome before 18.0.1025.151 all ... |
| CVE-2011-3075 | Use-after-free vulnerability in Google Chrome before 18.0.1025.151 all ... |
| CVE-2011-3074 | Use-after-free vulnerability in Google Chrome before 18.0.1025.151 all ... |
| CVE-2011-3073 | Use-after-free vulnerability in Google Chrome before 18.0.1025.151 all ... |
| CVE-2011-3072 | Google Chrome before 18.0.1025.151 allows remote attackers to bypass t ... |
| CVE-2011-3071 | Use-after-free vulnerability in the HTMLMediaElement implementation in ... |
| CVE-2011-3070 | Use-after-free vulnerability in Google Chrome before 18.0.1025.151 all ... |
| CVE-2011-3069 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2011-3068 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2011-3067 | Google Chrome before 18.0.1025.151 allows remote attackers to bypass t ... |
| CVE-2011-3066 | Skia, as used in Google Chrome before 18.0.1025.151, does not properly ... |
| CVE-2011-3065 | Skia, as used in Google Chrome before 18.0.1025.142, allows remote att ... |
| CVE-2011-3064 | Use-after-free vulnerability in Google Chrome before 18.0.1025.142 all ... |
| CVE-2011-3063 | Google Chrome before 18.0.1025.142 does not properly validate the rend ... |
| CVE-2011-3062 | Off-by-one error in the OpenType Sanitizer in Google Chrome before 18. ... |
| CVE-2011-3061 | Google Chrome before 18.0.1025.142 does not properly check X.509 certi ... |
| CVE-2011-3060 | Google Chrome before 18.0.1025.142 does not properly handle text fragm ... |
| CVE-2011-3059 | Google Chrome before 18.0.1025.142 does not properly handle SVG text e ... |
| CVE-2011-3058 | Google Chrome before 18.0.1025.142 does not properly handle the EUC-JP ... |
| CVE-2011-3056 | Google Chrome before 17.0.963.83 allows remote attackers to bypass the ... |
| CVE-2011-3055 | The browser native UI in Google Chrome before 17.0.963.83 does not req ... |
| CVE-2011-3054 | The WebUI privilege implementation in Google Chrome before 17.0.963.83 ... |
| CVE-2011-3053 | Use-after-free vulnerability in Google Chrome before 17.0.963.83 allow ... |
| CVE-2011-3052 | The WebGL implementation in Google Chrome before 17.0.963.83 does not ... |
| CVE-2011-3051 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2011-3050 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2011-3049 | Google Chrome before 17.0.963.83 does not properly restrict the extens ... |
| CVE-2011-3047 | The GPU process in Google Chrome before 17.0.963.79 allows remote atta ... |
| CVE-2011-3046 | The extension subsystem in Google Chrome before 17.0.963.78 does not p ... |
| CVE-2011-3044 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3043 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3042 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3041 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3040 | Google Chrome before 17.0.963.65 does not properly handle text, which ... |
| CVE-2011-3039 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3038 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3037 | Google Chrome before 17.0.963.65 does not properly perform casts of un ... |
| CVE-2011-3036 | Google Chrome before 17.0.963.65 does not properly perform a cast of a ... |
| CVE-2011-3035 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3034 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3033 | Buffer overflow in Skia, as used in Google Chrome before 17.0.963.65, ... |
| CVE-2011-3032 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allow ... |
| CVE-2011-3031 | Use-after-free vulnerability in the element wrapper in Google V8, as u ... |
| CVE-2011-3027 | Google Chrome before 17.0.963.56 does not properly perform a cast of a ... |
| CVE-2011-3025 | Google Chrome before 17.0.963.56 does not properly parse H.264 data, w ... |
| CVE-2011-3024 | Google Chrome before 17.0.963.56 allows remote attackers to cause a de ... |
| CVE-2011-3023 | Use-after-free vulnerability in Google Chrome before 17.0.963.56 allow ... |
| CVE-2011-3022 | translate/translate_manager.cc in Google Chrome before 17.0.963.56 and ... |
| CVE-2011-3021 | Use-after-free vulnerability in Google Chrome before 17.0.963.56 allow ... |
| CVE-2011-3020 | Unspecified vulnerability in the Native Client validator implementatio ... |
| CVE-2011-3019 | Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows ... |
| CVE-2011-3018 | Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows ... |
| CVE-2011-3017 | Use-after-free vulnerability in Google Chrome before 17.0.963.56 allow ... |
| CVE-2011-3016 | Use-after-free vulnerability in Google Chrome before 17.0.963.56 allow ... |
| CVE-2011-3015 | Multiple integer overflows in the PDF codecs in Google Chrome before 1 ... |
| CVE-2011-2881 | Google Chrome before 14.0.835.202 does not properly handle Google V8 h ... |
| CVE-2011-2880 | Use-after-free vulnerability in Google Chrome before 14.0.835.202 allo ... |
| CVE-2011-2879 | Google Chrome before 14.0.835.202 does not properly consider object li ... |
| CVE-2011-2878 | Google Chrome before 14.0.835.202 does not properly restrict access to ... |
| CVE-2011-2877 | Google Chrome before 14.0.835.202 does not properly handle SVG text, w ... |
| CVE-2011-2876 | Use-after-free vulnerability in Google Chrome before 14.0.835.202 allo ... |
| CVE-2011-2875 | Google V8, as used in Google Chrome before 14.0.835.163, does not prop ... |
| CVE-2011-2874 | Google Chrome before 14.0.835.163 does not perform an expected pin ope ... |
| CVE-2011-2864 | Google Chrome before 14.0.835.163 does not properly handle Tibetan cha ... |
| CVE-2011-2863 | Insufficient policy enforcement in V8 in Google Chrome prior to 14.0.0 ... |
| CVE-2011-2862 | Google V8, as used in Google Chrome before 14.0.835.163, does not prop ... |
| CVE-2011-2861 | Google Chrome before 14.0.835.163 does not properly handle strings in ... |
| CVE-2011-2860 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allo ... |
| CVE-2011-2859 | Google Chrome before 14.0.835.163 uses incorrect permissions for non-g ... |
| CVE-2011-2858 | Google Chrome before 14.0.835.163 does not properly handle triangle ar ... |
| CVE-2011-2857 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allo ... |
| CVE-2011-2856 | Google V8, as used in Google Chrome before 14.0.835.163, allows remote ... |
| CVE-2011-2855 | Google Chrome before 14.0.835.163 does not properly handle Cascading S ... |
| CVE-2011-2854 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allo ... |
| CVE-2011-2853 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allo ... |
| CVE-2011-2852 | Off-by-one error in Google V8, as used in Google Chrome before 14.0.83 ... |
| CVE-2011-2851 | Google Chrome before 14.0.835.163 does not properly handle video, whic ... |
| CVE-2011-2850 | Google Chrome before 14.0.835.163 does not properly handle Khmer chara ... |
| CVE-2011-2849 | The WebSockets implementation in Google Chrome before 14.0.835.163 all ... |
| CVE-2011-2848 | Google Chrome before 14.0.835.163 allows user-assisted remote attacker ... |
| CVE-2011-2847 | Use-after-free vulnerability in the document loader in Google Chrome b ... |
| CVE-2011-2846 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allo ... |
| CVE-2011-2845 | Google Chrome before 15.0.874.102 does not properly handle history dat ... |
| CVE-2011-2844 | Google Chrome before 14.0.835.163 does not properly process MP3 files, ... |
| CVE-2011-2843 | Google Chrome before 14.0.835.163 does not properly handle media buffe ... |
| CVE-2011-2842 | The installer in Google Chrome before 14.0.835.163 on Mac OS X does no ... |
| CVE-2011-2841 | Google Chrome before 14.0.835.163 does not properly perform garbage co ... |
| CVE-2011-2840 | Google Chrome before 14.0.835.163 allows user-assisted remote attacker ... |
| CVE-2011-2839 | The PDF implementation in Google Chrome before 13.0.782.215 on Linux d ... |
| CVE-2011-2838 | Google Chrome before 14.0.835.163 does not properly consider the MIME ... |
| CVE-2011-2837 | Google Chrome before 14.0.835.163 on Linux does not use the PIC and PI ... |
| CVE-2011-2836 | Google Chrome before 14.0.835.163 does not require Infobar interaction ... |
| CVE-2011-2835 | Race condition in Google Chrome before 14.0.835.163 allows attackers t ... |
| CVE-2011-2829 | Integer overflow in Google Chrome before 13.0.782.215 on 32-bit platfo ... |
| CVE-2011-2828 | Google V8, as used in Google Chrome before 13.0.782.215, allows remote ... |
| CVE-2011-2827 | Use-after-free vulnerability in Google Chrome before 13.0.782.215 allo ... |
| CVE-2011-2826 | Google Chrome before 13.0.782.215 allows remote attackers to bypass th ... |
| CVE-2011-2825 | Use-after-free vulnerability in Google Chrome before 13.0.782.215 allo ... |
| CVE-2011-2824 | Use-after-free vulnerability in Google Chrome before 13.0.782.215 allo ... |
| CVE-2011-2823 | Use-after-free vulnerability in Google Chrome before 13.0.782.215 allo ... |
| CVE-2011-2822 | Google Chrome before 13.0.782.215 on Windows does not properly parse U ... |
| CVE-2011-2821 | Double free vulnerability in libxml2, as used in Google Chrome before ... |
| CVE-2011-2819 | Google Chrome before 13.0.782.107 allows remote attackers to bypass th ... |
| CVE-2011-2818 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2806 | Google Chrome before 13.0.782.215 on Windows does not properly handle ... |
| CVE-2011-2805 | Google Chrome before 13.0.782.107 allows remote attackers to bypass th ... |
| CVE-2011-2804 | Google Chrome before 13.0.782.107 does not properly handle nested func ... |
| CVE-2011-2803 | Google Chrome before 13.0.782.107 does not properly handle Skia paths, ... |
| CVE-2011-2802 | Google V8, as used in Google Chrome before 13.0.782.107, does not prop ... |
| CVE-2011-2801 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2800 | Google Chrome before 13.0.782.107 allows remote attackers to obtain po ... |
| CVE-2011-2799 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2798 | Google Chrome before 13.0.782.107 does not properly restrict access to ... |
| CVE-2011-2797 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2796 | Use-after-free vulnerability in Skia, as used in Google Chrome before ... |
| CVE-2011-2795 | Google Chrome before 13.0.782.107 does not prevent calls to functions ... |
| CVE-2011-2794 | Google Chrome before 13.0.782.107 does not properly perform text itera ... |
| CVE-2011-2793 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2792 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2791 | The International Components for Unicode (ICU) functionality in Google ... |
| CVE-2011-2790 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2789 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allo ... |
| CVE-2011-2788 | Buffer overflow in the inspector serialization functionality in Google ... |
| CVE-2011-2787 | Google Chrome before 13.0.782.107 does not properly address re-entranc ... |
| CVE-2011-2786 | Google Chrome before 13.0.782.107 does not ensure that the speech-inpu ... |
| CVE-2011-2785 | The extensions implementation in Google Chrome before 13.0.782.107 doe ... |
| CVE-2011-2784 | Google Chrome before 13.0.782.107 allows remote attackers to obtain se ... |
| CVE-2011-2783 | Google Chrome before 13.0.782.107 does not ensure that developer-mode ... |
| CVE-2011-2782 | The drag-and-drop implementation in Google Chrome before 13.0.782.107 ... |
| CVE-2011-2761 | Google Chrome 14.0.794.0 does not properly handle a reload of a page g ... |
| CVE-2011-2361 | The Basic Authentication dialog implementation in Google Chrome before ... |
| CVE-2011-2360 | Google Chrome before 13.0.782.107 does not ensure that the user is pro ... |
| CVE-2011-2359 | Google Chrome before 13.0.782.107 does not properly track line boxes d ... |
| CVE-2011-2358 | Google Chrome before 13.0.782.107 does not ensure that extension insta ... |
| CVE-2011-2351 | Use-after-free vulnerability in Google Chrome before 12.0.742.112 allo ... |
| CVE-2011-2350 | The HTML parser in Google Chrome before 12.0.742.112 does not properly ... |
| CVE-2011-2349 | Use-after-free vulnerability in Google Chrome before 12.0.742.112 allo ... |
| CVE-2011-2347 | Google Chrome before 12.0.742.112 does not properly handle Cascading S ... |
| CVE-2011-2346 | Use-after-free vulnerability in Google Chrome before 12.0.742.112 allo ... |
| CVE-2011-2345 | The NPAPI implementation in Google Chrome before 12.0.742.112 does not ... |
| CVE-2011-2342 | The DOM implementation in Google Chrome before 12.0.742.91 allows remo ... |
| CVE-2011-2332 | Google V8, as used in Google Chrome before 12.0.742.91, allows remote ... |
| CVE-2011-1819 | Google Chrome before 12.0.742.91 allows remote attackers to perform un ... |
| CVE-2011-1818 | Use-after-free vulnerability in the image loader in Google Chrome befo ... |
| CVE-2011-1817 | Google Chrome before 12.0.742.91 does not properly implement history d ... |
| CVE-2011-1816 | Use-after-free vulnerability in the developer tools in Google Chrome b ... |
| CVE-2011-1815 | Google Chrome before 12.0.742.91 allows remote attackers to inject scr ... |
| CVE-2011-1814 | Google Chrome before 12.0.742.91 attempts to read data from an uniniti ... |
| CVE-2011-1813 | Google Chrome before 12.0.742.91 does not properly implement the frame ... |
| CVE-2011-1812 | Google Chrome before 12.0.742.91 allows remote attackers to bypass int ... |
| CVE-2011-1811 | Google Chrome before 12.0.742.91 does not properly handle a large numb ... |
| CVE-2011-1810 | The Cascading Style Sheets (CSS) implementation in Google Chrome befor ... |
| CVE-2011-1809 | Use-after-free vulnerability in the accessibility feature in Google Ch ... |
| CVE-2011-1808 | Use-after-free vulnerability in Google Chrome before 12.0.742.91 allow ... |
| CVE-2011-1807 | Google Chrome before 11.0.696.71 does not properly handle blobs, which ... |
| CVE-2011-1806 | Google Chrome before 11.0.696.71 does not properly implement the GPU c ... |
| CVE-2011-1805 | Bad cast in CSS in Google Chrome prior to 11.0.0.0 allowed a remote at ... |
| CVE-2011-1804 | rendering/RenderBox.cpp in WebCore in WebKit before r86862, as used in ... |
| CVE-2011-1801 | Unspecified vulnerability in Google Chrome before 11.0.696.71 allows r ... |
| CVE-2011-1800 | Multiple integer overflows in the SVG Filters implementation in WebCor ... |
| CVE-2011-1799 | Google Chrome before 11.0.696.68 does not properly perform casts of va ... |
| CVE-2011-1798 | rendering/svg/RenderSVGText.cpp in WebCore in WebKit in Google Chrome ... |
| CVE-2011-1797 | WebKit, as used in Apple Safari before 5.0.6, allows remote attackers ... |
| CVE-2011-1796 | Use-after-free vulnerability in the FrameView::calculateScrollbarModes ... |
| CVE-2011-1795 | Integer underflow in the HTMLFormElement::removeFormElement function i ... |
| CVE-2011-1794 | Integer overflow in the FilterEffect::copyImageBytes function in platf ... |
| CVE-2011-1793 | rendering/svg/RenderSVGResourceFilter.cpp in WebCore in WebKit in Goog ... |
| CVE-2011-1691 | The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in t ... |
| CVE-2011-1465 | The SPDY implementation in net/http/http_network_transaction.cc in Goo ... |
| CVE-2011-1456 | Google Chrome before 11.0.696.57 does not properly handle PDF forms, w ... |
| CVE-2011-1455 | Google Chrome before 11.0.696.57 does not properly handle PDF document ... |
| CVE-2011-1454 | Use-after-free vulnerability in the DOM id handling functionality in G ... |
| CVE-2011-1452 | Google Chrome before 11.0.696.57 allows user-assisted remote attackers ... |
| CVE-2011-1451 | Google Chrome before 11.0.696.57 does not properly handle DOM id maps, ... |
| CVE-2011-1450 | Google Chrome before 11.0.696.57 does not properly present file dialog ... |
| CVE-2011-1449 | Use-after-free vulnerability in the WebSockets implementation in Googl ... |
| CVE-2011-1448 | Google Chrome before 11.0.696.57 does not properly perform height calc ... |
| CVE-2011-1447 | Google Chrome before 11.0.696.57 does not properly handle drop-down li ... |
| CVE-2011-1446 | Google Chrome before 11.0.696.57 allows remote attackers to spoof the ... |
| CVE-2011-1445 | Google Chrome before 11.0.696.57 does not properly handle SVG document ... |
| CVE-2011-1444 | Race condition in the sandbox launcher implementation in Google Chrome ... |
| CVE-2011-1443 | Google Chrome before 11.0.696.57 does not properly implement layering, ... |
| CVE-2011-1442 | Google Chrome before 11.0.696.57 does not properly handle mutation eve ... |
| CVE-2011-1441 | Google Chrome before 11.0.696.57 does not properly perform a cast of a ... |
| CVE-2011-1440 | Use-after-free vulnerability in Google Chrome before 11.0.696.57 allow ... |
| CVE-2011-1439 | Google Chrome before 11.0.696.57 on Linux does not properly isolate re ... |
| CVE-2011-1438 | Google Chrome before 11.0.696.57 allows remote attackers to bypass the ... |
| CVE-2011-1437 | Multiple integer overflows in Google Chrome before 11.0.696.57 allow r ... |
| CVE-2011-1436 | Google Chrome before 11.0.696.57 on Linux does not properly interact w ... |
| CVE-2011-1435 | Google Chrome before 11.0.696.57 does not properly implement the tabs ... |
| CVE-2011-1434 | Google Chrome before 11.0.696.57 does not ensure thread safety during ... |
| CVE-2011-1413 | Google Chrome before 10.0.648.127 on Linux does not properly mitigate ... |
| CVE-2011-1305 | Race condition in Google Chrome before 11.0.696.57 on Linux and Mac OS ... |
| CVE-2011-1304 | Unspecified vulnerability in Google Chrome before 11.0.696.57 allows r ... |
| CVE-2011-1303 | Google Chrome before 11.0.696.57 does not properly handle floating obj ... |
| CVE-2011-1302 | Heap-based buffer overflow in the GPU process in Google Chrome before ... |
| CVE-2011-1301 | Use-after-free vulnerability in the GPU process in Google Chrome befor ... |
| CVE-2011-1296 | Google Chrome before 10.0.648.204 does not properly handle SVG text, w ... |
| CVE-2011-1295 | WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari ... |
| CVE-2011-1294 | Google Chrome before 10.0.648.204 does not properly handle Cascading S ... |
| CVE-2011-1293 | Use-after-free vulnerability in the HTMLCollection implementation in G ... |
| CVE-2011-1292 | Use-after-free vulnerability in the frame-loader implementation in Goo ... |
| CVE-2011-1291 | Google Chrome before 10.0.648.204 does not properly handle base string ... |
| CVE-2011-1290 | Integer overflow in WebKit, as used on the Research In Motion (RIM) Bl ... |
| CVE-2011-1204 | Google Chrome before 10.0.648.127 does not properly handle attributes, ... |
| CVE-2011-1203 | Google Chrome before 10.0.648.127 does not properly handle SVG cursors ... |
| CVE-2011-1201 | The context implementation in WebKit, as used in Google Chrome before ... |
| CVE-2011-1200 | Google Chrome before 10.0.648.127 does not properly perform a cast of ... |
| CVE-2011-1199 | Google Chrome before 10.0.648.127 does not properly handle DataView ob ... |
| CVE-2011-1198 | The video functionality in Google Chrome before 10.0.648.127 allows re ... |
| CVE-2011-1197 | Google Chrome before 10.0.648.127 does not properly perform table pain ... |
| CVE-2011-1196 | The OGG container implementation in Google Chrome before 10.0.648.127 ... |
| CVE-2011-1195 | Use-after-free vulnerability in Google Chrome before 10.0.648.127 allo ... |
| CVE-2011-1194 | Multiple unspecified vulnerabilities in Google Chrome before 10.0.648. ... |
| CVE-2011-1192 | Google Chrome before 10.0.648.127 on Linux does not properly handle Un ... |
| CVE-2011-1191 | Use-after-free vulnerability in Google Chrome before 10.0.648.127 allo ... |
| CVE-2011-1190 | The Web Workers implementation in Google Chrome before 10.0.648.127 al ... |
| CVE-2011-1189 | Google Chrome before 10.0.648.127 does not properly perform box layout ... |
| CVE-2011-1188 | Google Chrome before 10.0.648.127 does not properly handle counter nod ... |
| CVE-2011-1186 | Google Chrome before 10.0.648.127 on Linux does not properly handle pa ... |
| CVE-2011-1185 | Google Chrome before 10.0.648.127 does not prevent (1) navigation and ... |
| CVE-2011-1125 | Google Chrome before 9.0.597.107 does not properly perform layout, whi ... |
| CVE-2011-1124 | Use-after-free vulnerability in Google Chrome before 9.0.597.107 allow ... |
| CVE-2011-1123 | Google Chrome before 9.0.597.107 does not properly restrict access to ... |
| CVE-2011-1122 | The WebGL implementation in Google Chrome before 9.0.597.107 allows re ... |
| CVE-2011-1121 | Integer overflow in Google Chrome before 9.0.597.107 allows remote att ... |
| CVE-2011-1120 | The WebGL implementation in Google Chrome before 9.0.597.107 allows re ... |
| CVE-2011-1119 | Google Chrome before 9.0.597.107 does not properly determine device or ... |
| CVE-2011-1118 | Google Chrome before 9.0.597.107 does not properly handle TEXTAREA ele ... |
| CVE-2011-1117 | Google Chrome before 9.0.597.107 does not properly handle XHTML docume ... |
| CVE-2011-1116 | Google Chrome before 9.0.597.107 does not properly handle SVG animatio ... |
| CVE-2011-1115 | Google Chrome before 9.0.597.107 does not properly render tables, whic ... |
| CVE-2011-1114 | Google Chrome before 9.0.597.107 does not properly handle tables, whic ... |
| CVE-2011-1113 | Google Chrome before 9.0.597.107 on 64-bit Linux platforms does not pr ... |
| CVE-2011-1112 | Google Chrome before 9.0.597.107 does not properly perform SVG renderi ... |
| CVE-2011-1111 | Google Chrome before 9.0.597.107 does not properly implement forms con ... |
| CVE-2011-1110 | Google Chrome before 9.0.597.107 does not properly implement key frame ... |
| CVE-2011-1109 | Google Chrome before 9.0.597.107 does not properly process nodes in Ca ... |
| CVE-2011-1108 | Google Chrome before 9.0.597.107 does not properly implement JavaScrip ... |
| CVE-2011-1107 | Unspecified vulnerability in Google Chrome before 9.0.597.107 allows r ... |
| CVE-2011-0985 | Google Chrome before 9.0.597.94 does not properly perform process term ... |
| CVE-2011-0984 | Google Chrome before 9.0.597.94 does not properly handle plug-ins, whi ... |
| CVE-2011-0983 | Google Chrome before 9.0.597.94 does not properly handle anonymous blo ... |
| CVE-2011-0982 | Use-after-free vulnerability in Google Chrome before 9.0.597.94 allows ... |
| CVE-2011-0981 | Google Chrome before 9.0.597.94 does not properly perform event handli ... |
| CVE-2011-0784 | Race condition in Google Chrome before 9.0.597.84 allows remote attack ... |
| CVE-2011-0783 | Unspecified vulnerability in Google Chrome before 9.0.597.84 allows us ... |
| CVE-2011-0782 | Google Chrome before 9.0.597.84 on Mac OS X does not properly mitigate ... |
| CVE-2011-0781 | Google Chrome before 9.0.597.84 does not properly handle autofill prof ... |
| CVE-2011-0780 | The PDF event handler in Google Chrome before 9.0.597.84 does not prop ... |
| CVE-2011-0779 | Google Chrome before 9.0.597.84 does not properly handle a missing key ... |
| CVE-2011-0778 | Google Chrome before 9.0.597.84 does not properly restrict drag and dr ... |
| CVE-2011-0777 | Use-after-free vulnerability in Google Chrome before 9.0.597.84 allows ... |
| CVE-2011-0776 | The sandbox implementation in Google Chrome before 9.0.597.84 on Mac O ... |
| CVE-2011-0485 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0484 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0483 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0482 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0481 | Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS befo ... |
| CVE-2011-0479 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0478 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0477 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0476 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allo ... |
| CVE-2011-0475 | Use-after-free vulnerability in Google Chrome before 8.0.552.237 and C ... |
| CVE-2011-0474 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0473 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0472 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2011-0471 | The node-iteration implementation in Google Chrome before 8.0.552.237 ... |
| CVE-2011-0470 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do n ... |
| CVE-2010-5073 | The JavaScript implementation in Google Chrome 4 does not properly res ... |
| CVE-2010-5069 | The Cascading Style Sheets (CSS) implementation in Google Chrome 4 doe ... |
| CVE-2010-4578 | Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do n ... |
| CVE-2010-4577 | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp ... |
| CVE-2010-4576 | browser/worker_host/message_port_dispatcher.cc in Google Chrome before ... |
| CVE-2010-4575 | The ThemeInstalledInfoBarDelegate::Observe function in browser/extensi ... |
| CVE-2010-4574 | The Pickle::Pickle function in base/pickle.cc in Google Chrome before ... |
| CVE-2010-4494 | Double free vulnerability in libxml2 2.7.8 and other versions, as used ... |
| CVE-2010-4493 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allow ... |
| CVE-2010-4492 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allow ... |
| CVE-2010-4491 | Google Chrome before 8.0.552.215 does not properly restrict privileged ... |
| CVE-2010-4490 | Google Chrome before 8.0.552.215 allows remote attackers to cause a de ... |
| CVE-2010-4489 | libvpx, as used in Google Chrome before 8.0.552.215 and possibly other ... |
| CVE-2010-4488 | Google Chrome before 8.0.552.215 does not properly handle HTTP proxy a ... |
| CVE-2010-4487 | Incomplete blacklist vulnerability in Google Chrome before 8.0.552.215 ... |
| CVE-2010-4486 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allow ... |
| CVE-2010-4485 | Google Chrome before 8.0.552.215 does not properly restrict the genera ... |
| CVE-2010-4484 | Google Chrome before 8.0.552.215 does not properly handle HTML5 databa ... |
| CVE-2010-4483 | Google Chrome before 8.0.552.215 does not properly restrict read acces ... |
| CVE-2010-4206 | Array index error in the FEBlend::apply function in WebCore/platform/g ... |
| CVE-2010-4205 | Google Chrome before 7.0.517.44 does not properly handle the data type ... |
| CVE-2010-4204 | WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1 ... |
| CVE-2010-4202 | Multiple integer overflows in Google Chrome before 7.0.517.44 on Linux ... |
| CVE-2010-4201 | Use-after-free vulnerability in Google Chrome before 7.0.517.44 allows ... |
| CVE-2010-4199 | Google Chrome before 7.0.517.44 does not properly perform a cast of an ... |
| CVE-2010-4198 | WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1 ... |
| CVE-2010-4197 | Use-after-free vulnerability in WebKit, as used in Google Chrome befor ... |
| CVE-2010-4042 | Google Chrome before 7.0.517.41 does not properly handle element maps, ... |
| CVE-2010-4041 | The sandbox implementation in Google Chrome before 7.0.517.41 on Linux ... |
| CVE-2010-4040 | Google Chrome before 7.0.517.41 does not properly handle animated GIF ... |
| CVE-2010-4039 | Google Chrome before 7.0.517.41 on Linux does not properly set the PAT ... |
| CVE-2010-4038 | The Web Sockets implementation in Google Chrome before 7.0.517.41 does ... |
| CVE-2010-4036 | Google Chrome before 7.0.517.41 does not properly handle the unloading ... |
| CVE-2010-4035 | Google Chrome before 7.0.517.41 does not properly perform autofill ope ... |
| CVE-2010-4034 | Google Chrome before 7.0.517.41 does not properly handle forms, which ... |
| CVE-2010-4033 | Google Chrome before 7.0.517.41 does not properly implement the autofi ... |
| CVE-2010-3917 | Google Chrome before 3.0 does not properly handle XML documents, which ... |
| CVE-2010-3813 | The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLin ... |
| CVE-2010-3812 | Integer overflow in the Text::wholeText method in dom/Text.cpp in WebK ... |
| CVE-2010-3730 | Google Chrome before 6.0.472.62 does not properly use information abou ... |
| CVE-2010-3729 | The SPDY protocol implementation in Google Chrome before 6.0.472.62 do ... |
| CVE-2010-3417 | Google Chrome before 6.0.472.59 does not prompt the user before granti ... |
| CVE-2010-3416 | Google Chrome before 6.0.472.59 on Linux does not properly implement t ... |
| CVE-2010-3415 | Google Chrome before 6.0.472.59 does not properly implement Geolocatio ... |
| CVE-2010-3414 | Google Chrome before 6.0.472.59 on Mac OS X does not properly implemen ... |
| CVE-2010-3413 | Unspecified vulnerability in the pop-up blocking functionality in Goog ... |
| CVE-2010-3411 | Google Chrome before 6.0.472.59 on Linux does not properly handle curs ... |
| CVE-2010-3259 | WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, G ... |
| CVE-2010-3258 | The sandbox implementation in Google Chrome before 6.0.472.53 does not ... |
| CVE-2010-3257 | Use-after-free vulnerability in WebKit, as used in Apple Safari before ... |
| CVE-2010-3256 | Google Chrome before 6.0.472.53 does not properly limit the number of ... |
| CVE-2010-3255 | Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do not prop ... |
| CVE-2010-3254 | The WebSockets implementation in Google Chrome before 6.0.472.53 does ... |
| CVE-2010-3253 | The implementation of notification permissions in Google Chrome before ... |
| CVE-2010-3252 | Use-after-free vulnerability in the Notifications presenter in Google ... |
| CVE-2010-3251 | The WebSockets implementation in Google Chrome before 6.0.472.53 allow ... |
| CVE-2010-3250 | Unspecified vulnerability in Google Chrome before 6.0.472.53 allows re ... |
| CVE-2010-3249 | Google Chrome before 6.0.472.53 does not properly implement SVG filter ... |
| CVE-2010-3248 | Google Chrome before 6.0.472.53 does not properly restrict copying to ... |
| CVE-2010-3247 | Google Chrome before 6.0.472.53 does not properly restrict the charact ... |
| CVE-2010-3246 | Google Chrome before 6.0.472.53 does not properly handle the _blank va ... |
| CVE-2010-3120 | Google Chrome before 5.0.375.127 does not properly implement the Geolo ... |
| CVE-2010-3119 | Google Chrome before 5.0.375.127 and webkitgtk before 1.2.6 do not pro ... |
| CVE-2010-3118 | The autosuggest feature in the Omnibox implementation in Google Chrome ... |
| CVE-2010-3117 | Google Chrome before 5.0.375.127 does not properly implement the notif ... |
| CVE-2010-3116 | Multiple use-after-free vulnerabilities in WebKit, as used in Apple Sa ... |
| CVE-2010-3115 | Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not ... |
| CVE-2010-3114 | The text-editing implementation in Google Chrome before 5.0.375.127, a ... |
| CVE-2010-3113 | Google Chrome before 5.0.375.127, and webkitgtk before 1.2.5, does not ... |
| CVE-2010-3112 | Google Chrome before 5.0.375.127 does not properly implement file dial ... |
| CVE-2010-3111 | Google Chrome before 6.0.472.53 does not properly mitigate an unspecif ... |
| CVE-2010-2903 | Google Chrome before 5.0.375.125 performs unexpected truncation and im ... |
| CVE-2010-2902 | The SVG implementation in Google Chrome before 5.0.375.125 allows remo ... |
| CVE-2010-2901 | The rendering implementation in Google Chrome before 5.0.375.125 allow ... |
| CVE-2010-2900 | Google Chrome before 5.0.375.125 does not properly handle a large canv ... |
| CVE-2010-2899 | Unspecified vulnerability in the layout implementation in Google Chrom ... |
| CVE-2010-2898 | Google Chrome before 5.0.375.125 does not properly mitigate an unspeci ... |
| CVE-2010-2897 | Google Chrome before 5.0.375.125 does not properly mitigate an unspeci ... |
| CVE-2010-2652 | Google Chrome before 5.0.375.99 does not properly implement modal dial ... |
| CVE-2010-2651 | The Cascading Style Sheets (CSS) implementation in Google Chrome befor ... |
| CVE-2010-2650 | Unspecified vulnerability in Google Chrome before 5.0.375.99 has unkno ... |
| CVE-2010-2649 | Unspecified vulnerability in Google Chrome before 5.0.375.99 allows re ... |
| CVE-2010-2648 | The implementation of the Unicode Bidirectional Algorithm (aka Bidi al ... |
| CVE-2010-2647 | Google Chrome before 5.0.375.99 allows remote attackers to cause a den ... |
| CVE-2010-2646 | Google Chrome before 5.0.375.99 does not properly isolate sandboxed IF ... |
| CVE-2010-2645 | Unspecified vulnerability in Google Chrome before 5.0.375.99, when Web ... |
| CVE-2010-2454 | Apple Safari does not properly manage the address bar between the requ ... |
| CVE-2010-2441 | WebKit does not properly restrict focus changes, which allows remote a ... |
| CVE-2010-2302 | Use-after-free vulnerability in WebCore in WebKit in Google Chrome bef ... |
| CVE-2010-2301 | Cross-site scripting (XSS) vulnerability in editing/markup.cpp in WebC ... |
| CVE-2010-2300 | Use-after-free vulnerability in the Element::normalizeAttributes funct ... |
| CVE-2010-2299 | The Clipboard::DispatchObject function in app/clipboard/clipboard.cc i ... |
| CVE-2010-2298 | browser/renderer_host/database_dispatcher_host.cc in Google Chrome bef ... |
| CVE-2010-2297 | rendering/FixedTableLayout.cpp in WebCore in WebKit in Google Chrome b ... |
| CVE-2010-2296 | The implementation of unspecified DOM methods in Google Chrome before ... |
| CVE-2010-2295 | page/EventHandler.cpp in WebCore in WebKit in Google Chrome before 5.0 ... |
| CVE-2010-2264 | The Cascading Style Sheets (CSS) implementation in WebKit in Apple Saf ... |
| CVE-2010-2110 | Google Chrome before 5.0.375.55 does not properly execute JavaScript c ... |
| CVE-2010-2109 | Unspecified vulnerability in Google Chrome before 5.0.375.55 allows us ... |
| CVE-2010-2108 | Unspecified vulnerability in Google Chrome before 5.0.375.55 allows re ... |
| CVE-2010-2107 | Unspecified vulnerability in Google Chrome before 5.0.375.55 allows at ... |
| CVE-2010-2106 | Unspecified vulnerability in Google Chrome before 5.0.375.55 might all ... |
| CVE-2010-2105 | Google Chrome before 5.0.375.55 does not properly follow the Safe Brow ... |
| CVE-2010-1940 | Apple Safari 4.0.5 on Windows sends the "Authorization: Basic" header ... |
| CVE-2010-1939 | Use-after-free vulnerability in Apple Safari 4.0.5 on Windows allows r ... |
| CVE-2010-1825 | Use-after-free vulnerability in WebKit, as used in Google Chrome befor ... |
| CVE-2010-1824 | Use-after-free vulnerability in WebKit, as used in Apple iTunes before ... |
| CVE-2010-1823 | Use-after-free vulnerability in WebKit before r65958, as used in Googl ... |
| CVE-2010-1822 | WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 an ... |
| CVE-2010-1813 | WebKit in Apple iOS before 4.1 on the iPhone and iPod touch allows rem ... |
| CVE-2010-1807 | WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2; Android ... |
| CVE-2010-1806 | Use-after-free vulnerability in Apple Safari 4.x before 4.1.2 and 5.x ... |
| CVE-2010-1805 | Untrusted search path vulnerability in Apple Safari 4.x before 4.1.2 a ... |
| CVE-2010-1796 | The AutoFill feature in Apple Safari before 5.0.1 on Mac OS X 10.5 thr ... |
| CVE-2010-1793 | Multiple use-after-free vulnerabilities in WebKit in Apple Safari befo ... |
| CVE-2010-1792 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1791 | Integer signedness error in WebKit in Apple Safari before 5.0.1 on Mac ... |
| CVE-2010-1790 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1789 | Heap-based buffer overflow in WebKit in Apple Safari before 5.0.1 on M ... |
| CVE-2010-1788 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1787 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1786 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on ... |
| CVE-2010-1785 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1784 | The counters functionality in the Cascading Style Sheets (CSS) impleme ... |
| CVE-2010-1783 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1782 | WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and ... |
| CVE-2010-1780 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on ... |
| CVE-2010-1778 | Cross-site scripting (XSS) vulnerability in Apple Safari before 5.0.1 ... |
| CVE-2010-1774 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1773 | Off-by-one error in the toAlphabetic function in rendering/RenderListM ... |
| CVE-2010-1772 | Use-after-free vulnerability in page/Geolocation.cpp in WebCore in Web ... |
| CVE-2010-1771 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1770 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1769 | WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 o ... |
| CVE-2010-1767 | Cross-site request forgery (CSRF) vulnerability in loader/DocumentThre ... |
| CVE-2010-1766 | Off-by-one error in the WebSocketHandshake::readServerHandshake functi ... |
| CVE-2010-1764 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1763 | Unspecified vulnerability in WebKit in Apple iTunes before 9.2 on Wind ... |
| CVE-2010-1762 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-1761 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1760 | loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementati ... |
| CVE-2010-1759 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1758 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1749 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1731 | Google Chrome on the HTC Hero allows remote attackers to cause a denia ... |
| CVE-2010-1665 | Google Chrome before 4.1.249.1064 does not properly handle fonts, whic ... |
| CVE-2010-1664 | Google Chrome before 4.1.249.1064 does not properly handle HTML5 media ... |
| CVE-2010-1663 | The Google URL Parsing Library (aka google-url or GURL) in Google Chro ... |
| CVE-2010-1506 | The Google V8 bindings in Google Chrome before 4.1.249.1059 allow atta ... |
| CVE-2010-1505 | Google Chrome before 4.1.249.1059 does not prevent pages from loading ... |
| CVE-2010-1504 | Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.2 ... |
| CVE-2010-1503 | Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.2 ... |
| CVE-2010-1502 | Unspecified vulnerability in Google Chrome before 4.1.249.1059 allows ... |
| CVE-2010-1500 | Google Chrome before 4.1.249.1059 does not properly support forms, whi ... |
| CVE-2010-1422 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1421 | The execCommand JavaScript function in WebKit in Apple Safari before 5 ... |
| CVE-2010-1419 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1418 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-1417 | The Cascading Style Sheets (CSS) implementation in WebKit in Apple Saf ... |
| CVE-2010-1416 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1415 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1414 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1413 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1412 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1410 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1409 | Incomplete blacklist vulnerability in WebKit in Apple Safari before 5. ... |
| CVE-2010-1408 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1407 | WebKit in Apple iOS before 4 on the iPhone and iPod touch does not pro ... |
| CVE-2010-1406 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1405 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1404 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1403 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1402 | Double free vulnerability in WebKit in Apple Safari before 5.0 on Mac ... |
| CVE-2010-1401 | Use-after-free vulnerability in the Cascading Style Sheets (CSS) imple ... |
| CVE-2010-1400 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1399 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1398 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Wi ... |
| CVE-2010-1397 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1396 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1395 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-1394 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-1393 | The Cascading Style Sheets (CSS) implementation in WebKit in Apple Saf ... |
| CVE-2010-1392 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on M ... |
| CVE-2010-1391 | Multiple directory traversal vulnerabilities in the (a) Local Storage ... |
| CVE-2010-1390 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-1389 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-1388 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and b ... |
| CVE-2010-1387 | Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTun ... |
| CVE-2010-1386 | page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2 ... |
| CVE-2010-1385 | Use-after-free vulnerability in Apple Safari before 5.0 on Mac OS X 10 ... |
| CVE-2010-1237 | Google Chrome 4.1 BETA before 4.1.249.1036 allows remote attackers to ... |
| CVE-2010-1236 | The protocolIs function in platform/KURLGoogle.cpp in WebCore in WebKi ... |
| CVE-2010-1235 | Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows ... |
| CVE-2010-1234 | Unspecified vulnerability in Google Chrome before 4.1.249.1036 allows ... |
| CVE-2010-1233 | Multiple integer overflows in Google Chrome before 4.1.249.1036 allow ... |
| CVE-2010-1232 | Google Chrome before 4.1.249.1036 allows remote attackers to cause a d ... |
| CVE-2010-1231 | Google Chrome before 4.1.249.1036 processes HTTP headers before invoki ... |
| CVE-2010-1230 | Google Chrome before 4.1.249.1036 does not have the expected behavior ... |
| CVE-2010-1229 | The sandbox infrastructure in Google Chrome before 4.1.249.1036 does n ... |
| CVE-2010-1228 | Multiple race conditions in the sandbox infrastructure in Google Chrom ... |
| CVE-2010-1029 | Stack consumption vulnerability in the WebCore::CSSSelector function i ... |
| CVE-2010-0664 | Stack consumption vulnerability in the ChildProcessSecurityPolicy::Can ... |
| CVE-2010-0663 | The ParamTraits<SkBitmap>::Read function in common/common_param_traits ... |
| CVE-2010-0662 | The ParamTraits<SkBitmap>::Read function in common/common_param_traits ... |
| CVE-2010-0661 | WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r524 ... |
| CVE-2010-0660 | Google Chrome before 4.0.249.78 sends an https URL in the Referer head ... |
| CVE-2010-0659 | The image decoder in WebKit before r52833, as used in Google Chrome be ... |
| CVE-2010-0658 | Multiple integer overflows in Skia, as used in Google Chrome before 4. ... |
| CVE-2010-0657 | Google Chrome before 4.0.249.78 on Windows does not perform the expect ... |
| CVE-2010-0656 | WebKit before r51295, as used in Google Chrome before 4.0.249.78, pres ... |
| CVE-2010-0655 | Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows ... |
| CVE-2010-0651 | WebKit before r52784, as used in Google Chrome before 4.0.249.78 and A ... |
| CVE-2010-0650 | WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, a ... |
| CVE-2010-0649 | Integer overflow in the CrossCallParamsEx::CreateFromBuffer function i ... |
| CVE-2010-0647 | WebKit before r53525, as used in Google Chrome before 4.0.249.89, allo ... |
| CVE-2010-0646 | Multiple integer signedness errors in factory.cc in Google V8 before r ... |
| CVE-2010-0645 | Multiple integer overflows in factory.cc in Google V8 before r3560, as ... |
| CVE-2010-0644 | Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is config ... |
| CVE-2010-0643 | Google Chrome before 4.0.249.89 attempts to make direct connections to ... |
| CVE-2010-0556 | browser/login/login_prompt.cc in Google Chrome before 4.0.249.89 popul ... |
| CVE-2010-0544 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... |
| CVE-2010-0315 | WebKit before r53607, as used in Google Chrome before 4.0.249.89, allo ... |
| CVE-2010-0314 | Apple Safari allows remote attackers to discover a redirect's target U ... |
| CVE-2010-0054 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0053 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0052 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0050 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0049 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0048 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0047 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 al ... |
| CVE-2010-0046 | The Cascading Style Sheets (CSS) implementation in WebKit in Apple Saf ... |
| CVE-2009-3934 | The WebFrameLoaderClient::dispatchDidChangeLocationWithinPage function ... |
| CVE-2009-3933 | WebKit before r50173, as used in Google Chrome before 3.0.195.32, allo ... |
| CVE-2009-3932 | The Gears plugin in Google Chrome before 3.0.195.32 allows user-assist ... |
| CVE-2009-3931 | Incomplete blacklist vulnerability in browser/download/download_exe.cc ... |
| CVE-2009-3456 | Google Chrome, possibly 3.0.195.21 and earlier, does not properly hand ... |
| CVE-2009-3268 | Google Chrome 1.0.154.48 and earlier allows remote attackers to cause ... |
| CVE-2009-3264 | The getSVGDocument method in Google Chrome before 3.0.195.21 omits an ... |
| CVE-2009-3263 | Cross-site scripting (XSS) vulnerability in Google Chrome 2.x and 3.x ... |
| CVE-2009-2974 | Google Chrome 1.0.154.65, 1.0.154.48, and earlier allows remote attack ... |
| CVE-2009-2973 | Google Chrome before 2.0.172.43 does not prevent SSL connections to a ... |
| CVE-2009-2955 | Google Chrome 1.0.154.48 and earlier allows remote attackers to cause ... |
| CVE-2009-2935 | Google V8, as used in Google Chrome before 2.0.172.43, allows remote a ... |
| CVE-2009-2578 | Google Chrome 2.x through 2.0.172 allows remote attackers to cause a d ... |
| CVE-2009-2556 | Google Chrome before 2.0.172.37 allows attackers to leverage renderer ... |
| CVE-2009-2555 | Heap-based buffer overflow in src/jsregexp.cc in Google V8 before 1.1. ... |
| CVE-2009-2352 | Google Chrome 1.0.154.48 and earlier does not block javascript: URIs i ... |
| CVE-2009-2121 | Buffer overflow in the browser kernel in Google Chrome before 2.0.172. ... |
| CVE-2009-2071 | Google Chrome before 1.0.154.53 displays a cached certificate for a (1 ... |
| CVE-2009-2068 | Google Chrome detects http content in https web pages only when the to ... |
| CVE-2009-2060 | src/net/http/http_transaction_winhttp.cc in Google Chrome before 1.0.1 ... |
| CVE-2009-1514 | Google Chrome 1.0.154.53 allows remote attackers to cause a denial of ... |
| CVE-2009-1441 | Heap-based buffer overflow in the ParamTraits<SkBitmap>::Read function ... |
| CVE-2009-1414 | Google Chrome 2.0.x lets modifications to the global object persist ac ... |
| CVE-2009-1413 | Google Chrome 1.0.x does not cancel timeouts upon a page transition, w ... |
| CVE-2009-1412 | Argument injection vulnerability in the chromehtml: protocol handler i ... |
| CVE-2009-0411 | Google Chrome before 1.0.154.46 does not properly restrict access from ... |
| CVE-2009-0276 | Cross-domain vulnerability in the V8 JavaScript engine in Google Chrom ... |
| CVE-2008-7294 | Google Chrome before 4.0.211.0 cannot properly restrict modifications ... |
| CVE-2008-7061 | The tooltip manager (chrome/views/tooltip_manager.cc) in Google Chrome ... |
| CVE-2008-6998 | Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Goog ... |
| CVE-2008-6997 | Google Chrome 0.2.149.27 allows user-assisted remote attackers to caus ... |
| CVE-2008-6996 | Google Chrome BETA (0.2.149.27) does not prompt the user before saving ... |
| CVE-2008-6995 | Integer underflow in net/base/escape.cc in chrome.dll in Google Chrome ... |
| CVE-2008-6994 | Stack-based buffer overflow in the SaveAs feature (SaveFileAsWithFilte ... |
| CVE-2008-4340 | Google Chrome 0.2.149.29 and 0.2.149.30 allows remote attackers to cau ... |
| CVE-2008-4226 | Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 al ... |
| CVE-2008-4225 | Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allo ... |
| CVE-2008-3281 | libxml2 2.6.32 and earlier does not properly detect recursion during e ... |