Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2011-3079

The Inter-process Communication (IPC) implementation in Google Chrome before 18.0.1025.168, as used in Mozilla Firefox before 38.0 and other products, does not properly validate messages, which has unspecified impact and attack vectors.

Related bugs and status

CVE-2011-3079 (Candidate) is related to these bugs:

Bug #992352: Please update to 18.0.1025.168

		In	Importance	Status
992352	Please update to 18.0.1025.168	chromium-browser (Ubuntu)	Medium	Fix Released
992352	Please update to 18.0.1025.168	chromium-browser (Ubuntu Oneiric)	Medium	Fix Released
992352	Please update to 18.0.1025.168	chromium-browser (Ubuntu Precise)	Medium	Fix Released
992352	Please update to 18.0.1025.168	chromium-browser (Ubuntu Quantal)	Medium	Fix Released
992352	Please update to 18.0.1025.168	chromium-browser (Ubuntu Lucid)	Medium	Fix Released
992352	Please update to 18.0.1025.168	chromium-browser (Ubuntu Natty)	Medium	Won't Fix

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://code.google.com...
CONFIRM: http://googlechromerel...
CONFIRM: http://www.mozilla.org...
CONFIRM: https://bugzilla.mozil...
SUSE: openSUSE-SU-2015:0934
SUSE: openSUSE-SU-2015:1266
CONFIRM: https://www.mozilla.or...
DEBIAN: DSA-3260
REDHAT: RHSA-2015:1012
SUSE: openSUSE-SU-2015:0892
OVAL: oval:org.mitre.oval:de...
BID: 53309
OSVDB: 81645
SECTRACK: 1027001
SECUNIA: 48992
XF: chrome-ipc-validation-...