Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-1225 | 5.0 |
PDFium, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1214 | 7.5 |
Integer overflow in the SkAutoSTArray implementation in include/core/SkTemplates.h in the filters implementation in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1229 | 5.0 |
net/http/proxy_client_socket.cc in Google Chrome before 41.0.2272.76 does not properly handle a 407 (aka Proxy Authentication Required) HTTP status code accompanied by a Set-Cookie header, which allows remote proxy servers to conduct cookie-injection
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1226 | 5.0 |
The DebuggerFunction::InitAgentHost function in browser/extensions/api/debugger/debugger_api.cc in Google Chrome before 41.0.2272.76 does not properly restrict what URLs are available as debugger targets, which allows remote attackers to bypass inten
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1220 | 6.8 |
Use-after-free vulnerability in the GIFImageReader::parseData function in platform/image-decoders/gif/GIFImageReader.cpp in Blink, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have uns
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1227 | 7.5 |
The DragImage::create function in platform/DragImage.cpp in Blink, as used in Google Chrome before 41.0.2272.76, does not initialize memory for image drawing, which allows remote attackers to have an unspecified impact by triggering a failed image de
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1217 | 7.5 |
The V8LazyEventListener::prepareListenerObject function in bindings/core/v8/V8LazyEventListener.cpp in the V8 bindings in Blink, as used in Google Chrome before 41.0.2272.76, does not properly compile listeners, which allows remote attackers to cause
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1231 | 7.5 |
Multiple unspecified vulnerabilities in Google Chrome before 41.0.2272.76 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1221 | 7.5 |
Use-after-free vulnerability in Blink, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect ordering of operations in the Web SQL Database
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1230 | 7.5 |
The getHiddenProperty function in bindings/core/v8/V8EventListenerList.h in Blink, as used in Google Chrome before 41.0.2272.76, has a name conflict with the AudioContext class, which allows remote attackers to cause a denial of service or possibly h
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1218 | 7.5 |
Multiple use-after-free vulnerabilities in the DOM implementation in Blink, as used in Google Chrome before 41.0.2272.76, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger movement
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1215 | 7.5 |
The filters implementation in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write operation.
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1216 | 7.5 |
Use-after-free vulnerability in the V8Window::namedPropertyGetterCustom function in bindings/core/v8/custom/V8WindowCustom.cpp in the V8 bindings in Blink, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of ser
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1224 | 5.0 |
The VpxVideoDecoder::VpxDecode function in media/filters/vpx_video_decoder.cc in the vpxdecoder implementation in Google Chrome before 41.0.2272.76 does not ensure that alpha-plane dimensions are identical to image dimensions, which allows remote att
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1228 | 7.5 |
The RenderCounter::updateCounter function in core/rendering/RenderCounter.cpp in Blink, as used in Google Chrome before 41.0.2272.76, does not force a relayout operation and consequently does not initialize memory for a data structure, which allows r
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1223 | 7.5 |
Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 41.0.2272.76, allow remote attackers to cause a denial of service or possibly have unspecified other impact
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1213 | 7.5 |
The SkBitmap::ReadRawPixels function in core/SkBitmap.cpp in the filters implementation in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1222 | 7.5 |
Multiple use-after-free vulnerabilities in the ServiceWorkerScriptCacheMap implementation in content/browser/service_worker/service_worker_script_cache_map.cc in Google Chrome before 41.0.2272.76 allow remote attackers to cause a denial of service or
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 | |
CVE-2015-1219 | 7.5 |
Integer overflow in the SkMallocPixelRef::NewAllocate function in core/SkMallocPixelRef.cpp in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vect
|
22-12-2016 - 02:59 | 09-03-2015 - 00:59 |