The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data, related to use of a (1) thumbnail database or (2) HTML canvas.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-02-18T17:19:00
Updated: 2024-08-07T00:59:38.526Z
Reserved: 2010-02-18T00:00:00
Link: CVE-2010-0663
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-02-18T18:00:01.097
Modified: 2024-11-21T01:12:41.653
Link: CVE-2010-0663
Redhat
No data.