Launchpad.net

CVE 2011-2345

The NPAPI implementation in Google Chrome before 12.0.742.112 does not properly handle strings, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Related bugs and status

CVE-2011-2345 (Candidate) is related to these bugs:

Bug #795171: <video> tag broken in oneiric only due to --as-needed in the toolchain

Summary				In	Importance	Status
	795171	<video> tag broken in oneiric only due to --as-needed in the toolchain		chromium-browser (Ubuntu)	Undecided	Fix Released
	795171	<video> tag broken in oneiric only due to --as-needed in the toolchain		chromium-browser (Ubuntu Oneiric)	Undecided	Fix Released

Bug #803107: 12.0.742.91 -> 12.0.742.112

		In	Importance	Status
803107	12.0.742.91 -> 12.0.742.112	chromium-browser (Ubuntu)	High	Fix Released
803107	12.0.742.91 -> 12.0.742.112	chromium-browser (Ubuntu Lucid)	High	Fix Released
803107	12.0.742.91 -> 12.0.742.112	chromium-browser (Ubuntu Maverick)	High	Fix Released
803107	12.0.742.91 -> 12.0.742.112	chromium-browser (Ubuntu Natty)	High	Fix Released
803107	12.0.742.91 -> 12.0.742.112	chromium-browser (Ubuntu Oneiric)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-2345

Related bugs and status

Related bugs

References