{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-05-15T00:00:00", "descriptions": [{"lang": "en", "value": "Google Chrome before 19.0.1084.46 on Linux does not properly mitigate an unspecified flaw in an NVIDIA driver, which has unknown impact and attack vectors. NOTE: see CVE-2012-3105 for the related MFSA 2012-34 issue in Mozilla products."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-28T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "GLSA-201205-03", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-201205-03.xml"}, {"name": "chrome-nvidia-code-exec(75606)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75606"}, {"name": "MDVSA-2012:088", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:088"}, {"name": "openSUSE-SU-2012:0656", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html"}, {"name": "1027067", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1027067"}, {"name": "RHSA-2012:0710", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2012-0710.html"}, {"name": "SUSE-SU-2012:0746", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html"}, {"name": "openSUSE-SU-2012:0760", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00015.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html"}, {"name": "53540", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/53540"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://code.google.com/p/chromium/issues/detail?id=118970"}, {"name": "RHSA-2012:0715", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2012-0715.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-3101", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Google Chrome before 19.0.1084.46 on Linux does not properly mitigate an unspecified flaw in an NVIDIA driver, which has unknown impact and attack vectors. NOTE: see CVE-2012-3105 for the related MFSA 2012-34 issue in Mozilla products."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "GLSA-201205-03", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201205-03.xml"}, {"name": "chrome-nvidia-code-exec(75606)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75606"}, {"name": "MDVSA-2012:088", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:088"}, {"name": "openSUSE-SU-2012:0656", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html"}, {"name": "1027067", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1027067"}, {"name": "RHSA-2012:0710", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2012-0710.html"}, {"name": "SUSE-SU-2012:0746", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html"}, {"name": "openSUSE-SU-2012:0760", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00015.html"}, {"name": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html", "refsource": "CONFIRM", "url": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html"}, {"name": "53540", "refsource": "BID", "url": "http://www.securityfocus.com/bid/53540"}, {"name": "http://code.google.com/p/chromium/issues/detail?id=118970", "refsource": "CONFIRM", "url": "http://code.google.com/p/chromium/issues/detail?id=118970"}, {"name": "RHSA-2012:0715", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2012-0715.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T23:22:27.557Z"}, "title": "CVE Program Container", "references": [{"name": "GLSA-201205-03", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-201205-03.xml"}, {"name": "chrome-nvidia-code-exec(75606)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75606"}, {"name": "MDVSA-2012:088", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:088"}, {"name": "openSUSE-SU-2012:0656", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html"}, {"name": "1027067", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1027067"}, {"name": "RHSA-2012:0710", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2012-0710.html"}, {"name": "SUSE-SU-2012:0746", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html"}, {"name": "openSUSE-SU-2012:0760", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00015.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html"}, {"name": "53540", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/53540"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://code.google.com/p/chromium/issues/detail?id=118970"}, {"name": "RHSA-2012:0715", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2012-0715.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-3101", "datePublished": "2012-05-16T00:00:00", "dateReserved": "2011-08-09T00:00:00", "dateUpdated": "2024-08-06T23:22:27.557Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "matchCriteriaId": "B3A4D7B1-E4F5-4FAF-8F10-827335C7C454", "versionEndIncluding": "19.0.1084.45", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Google Chrome before 19.0.1084.46 on Linux does not properly mitigate an unspecified flaw in an NVIDIA driver, which has unknown impact and attack vectors. NOTE: see CVE-2012-3105 for the related MFSA 2012-34 issue in Mozilla products."}, {"lang": "es", "value": "Google Chrome anterior a v19.0.1084.46 sobre Linux, no mitiga adecuadamente un fallo no especificado en un controlador NVIDIA, que tiene un impacto y vectores de ataque desconocidos."}], "id": "CVE-2011-3101", "lastModified": "2024-05-17T16:55:20.777", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-05-16T00:55:03.573", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://code.google.com/p/chromium/issues/detail?id=118970"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00015.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2012-0710.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2012-0715.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-201205-03.xml"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:088"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/53540"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1027067"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75606"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank Mozilla project for reporting this issue. Upstream acknowledges Andrew McCreight, Bill McCloskey, Boris Zbarsky, Brian Bondy, Christian Holler, Igor Bukanov, Jesse Ruderman, Ken Russell (Google), and Olli Pettay as the original reporters.", "affected_release": [{"advisory": "RHSA-2012:0710", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "firefox-0:10.0.5-1.el5_8", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2012-06-05T00:00:00Z"}, {"advisory": "RHSA-2012:0710", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "xulrunner-0:10.0.5-1.el5_8", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2012-06-05T00:00:00Z"}, {"advisory": "RHSA-2012:0715", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "thunderbird-0:10.0.5-2.el5_8", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2012-06-06T00:00:00Z"}, {"advisory": "RHSA-2012:0710", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "firefox-0:10.0.5-1.el6_2", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2012-06-05T00:00:00Z"}, {"advisory": "RHSA-2012:0710", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "xulrunner-0:10.0.5-1.el6_2", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2012-06-05T00:00:00Z"}, {"advisory": "RHSA-2012:0715", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "thunderbird-0:10.0.5-2.el6_2", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2012-06-06T00:00:00Z"}], "bugzilla": {"description": "Mozilla: Miscellaneous memory safety hazards (rv:13.0/ rv:10.0.5) (MFSA 2012-34)", "id": "827829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=827829"}, "csaw": false, "cvss": {"cvss_base_score": "6.8", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "status": "verified"}, "details": ["Google Chrome before 19.0.1084.46 on Linux does not properly mitigate an unspecified flaw in an NVIDIA driver, which has unknown impact and attack vectors. NOTE: see CVE-2012-3105 for the related MFSA 2012-34 issue in Mozilla products."], "name": "CVE-2011-3101", "public_date": "2012-06-05T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2011-3101\nhttps://nvd.nist.gov/vuln/detail/CVE-2011-3101"], "threat_severity": "Critical"}