The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data, related to use of a (1) thumbnail database or (2) HTML canvas.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-02-18T17:19:00

Updated: 2024-08-07T00:59:38.526Z

Reserved: 2010-02-18T00:00:00

Link: CVE-2010-0663

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-02-18T18:00:01.097

Modified: 2024-11-21T01:12:41.653

Link: CVE-2010-0663

cve-icon Redhat

No data.