New Search

The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit as used in Google Chrome before 8.0.552.224 Chrome OS before 8.0.552.343 webkitgtk before 1.2.6 and other products does not properly parse Cascading Style Sheets (CSS) token sequences which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font related to "Type Confusion."

oval:org.mitre.oval:def:13953

The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit as used in Google Chrome before 8.0.552.224 Chrome OS before 8.0.552.343 webkitgtk before 1.2.6 and other products does not properly parse Cascading Style Sheets (CSS) token sequences which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font related to "Type Confusion."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008
  • Microsoft Windows 2000
  • Microsoft Windows XP
  • Microsoft Windows Server 2003
  • Microsoft Windows 7
  • Microsoft Windows Vista
Class:
vulnerability
Reference(s):
  • CVE-2010-4577
Product(s):
  • Google Chrome