QUOTE
11.06.2009 11:08
Google closes vulnerabilities in Chrome 2
A vulnerability in WebKit can be exploited by an attacker to crash a tab or execute arbitrary code in Google Chrome due to a memory corruption issue in WebKit's handling of recursion in certain DOM event handlers. For an attack to be successful, a victim must first visit a maliciously crafted website. The malicious code, however, will be sandboxed, limiting the damage that an attacker can do when exploiting the vulnerability. Nonetheless, Google considers the vulnerability to be a high risk.
Google has released version 2.0.172.31, a security update, which fixes the problems. Apple also recently closed the vulnerabilities in its WebKit-based Safari web browser with the release of version 4.0 on June 8th.
More about:
http://www.heise.de/english/newsticker/news/140250
Google closes vulnerabilities in Chrome 2
A vulnerability in WebKit can be exploited by an attacker to crash a tab or execute arbitrary code in Google Chrome due to a memory corruption issue in WebKit's handling of recursion in certain DOM event handlers. For an attack to be successful, a victim must first visit a maliciously crafted website. The malicious code, however, will be sandboxed, limiting the damage that an attacker can do when exploiting the vulnerability. Nonetheless, Google considers the vulnerability to be a high risk.
Google has released version 2.0.172.31, a security update, which fixes the problems. Apple also recently closed the vulnerabilities in its WebKit-based Safari web browser with the release of version 4.0 on June 8th.
More about:
http://www.heise.de/english/newsticker/news/140250