New Search

The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data related to use of a (1) thumbnail database or (2) HTML canvas.

oval:org.mitre.oval:def:14002

The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data related to use of a (1) thumbnail database or (2) HTML canvas.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows Vista
  • Microsoft Windows 7
  • Microsoft Windows Server 2008
  • Microsoft Windows 2000
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2010-0663
Product(s):
  • Google Chrome