Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-4577

The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."

Related bugs and status

CVE-2010-4577 (Candidate) is related to these bugs:

Bug #814464: webkit 1.2.7 security update tracking bug

		In	Importance	Status
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu)	Undecided	Invalid
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu Lucid)	Medium	Fix Released
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu Maverick)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://code.google.com...
CONFIRM: http://googlechromerel...
GENTOO: GLSA-201012-01
SECUNIA: 42648
MISC: http://trac.webkit.org...
MISC: http://trac.webkit.org...
MISC: https://bugs.webkit.or...
CONFIRM: https://bugzilla.redha...
FEDORA: FEDORA-2011-0121
BID: 45722
REDHAT: RHSA-2011:0177
SECUNIA: 43086
VUPEN: ADV-2011-0216
DEBIAN: DSA-2188
OVAL: oval:org.mitre.oval:de...