CVE-2011-0473

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with CANVAS elements, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
VendorProductVersion
googlechrome_os
𝑥
< 8.0.552.344
googlechrome
𝑥
< 8.0.552.237
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
maverick
Fixed 8.0.552.237~r70801-0ubuntu0.10.10.1
released
lucid
Fixed 8.0.552.237~r70801-0ubuntu0.10.04.1
released
karmic
dne
hardy
dne
dapper
dne
References
http://code.google.com/p/chromium/issues/detail?id=66560
http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html
http://osvdb.org/70456
http://secunia.com/advisories/42951
http://www.securityfocus.com/bid/45788
http://www.srware.net/forum/viewtopic.php?f=18&t=2054
https://exchange.xforce.ibmcloud.com/vulnerabilities/64664
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14460
http://code.google.com/p/chromium/issues/detail?id=66560
http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html
http://osvdb.org/70456
http://secunia.com/advisories/42951
http://www.securityfocus.com/bid/45788
http://www.srware.net/forum/viewtopic.php?f=18&t=2054
https://exchange.xforce.ibmcloud.com/vulnerabilities/64664
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14460