CVE-2010-4577
First published: Mon Dec 13 2010(Updated: )
The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/webkitgtk | <0:1.2.6-2.el6_0 | 0:1.2.6-2.el6_0 |
| Google Chrome | <8.0.552.224 | |
| WebKitGTK+ | <1.2.6 | |
| Chrome OS | <8.0.552.343 | |
| Fedora | =13 | |
| Debian | =6.0 | |
| Debian | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates_13.html
- http://code.google.com/p/chromium/issues/detail?id=63866
- http://www.gentoo.org/security/en/glsa/glsa-201012-01.xml
- http://secunia.com/advisories/42648
- http://trac.webkit.org/changeset/72685/trunk/WebCore/css/CSSParser.cpp
- http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052906.html
- http://trac.webkit.org/changeset/72685
- https://bugs.webkit.org/show_bug.cgi?id=49883
- https://bugzilla.redhat.com/show_bug.cgi?id=667025
- http://www.securityfocus.com/bid/45722
- http://www.redhat.com/support/errata/RHSA-2011-0177.html
- http://secunia.com/advisories/43086
- http://www.vupen.com/english/advisories/2011/0216
- http://www.debian.org/security/2011/dsa-2188
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13953
- https://access.redhat.com/security/cve/CVE-2010-4577
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4577
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=667027
- https://rhn.redhat.com/errata/RHSA-2011-0177.html
- https://www.cve.org/CVERecord?id=CVE-2010-4577 https://nvd.nist.gov/vuln/detail/CVE-2010-4577
- https://access.redhat.com/errata/RHSA-2011:0177
Frequently Asked Questions
What is the severity of CVE-2010-4577?
CVE-2010-4577 is considered a critical vulnerability due to its ability to allow remote attackers to execute arbitrary code.
How do I fix CVE-2010-4577?
To fix CVE-2010-4577, update Google Chrome to version 8.0.552.224 or later, or upgrade to the latest version of the affected webkitgtk packages.
What software is affected by CVE-2010-4577?
CVE-2010-4577 affects Google Chrome versions before 8.0.552.224, Chrome OS versions before 8.0.552.343, and webkitgtk versions before 1.2.6.
What type of vulnerability is CVE-2010-4577?
CVE-2010-4577 is a cross-site scripting vulnerability that exploits improper parsing of CSS token sequences.
Who can exploit CVE-2010-4577?
CVE-2010-4577 can be exploited by remote attackers, potentially compromising user systems without user interaction.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- agent/references
- agent/remedy
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-4577
- agent/weakness
- agent/author
- agent/severity
- agent/trending
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/nvd-historical
- package-manager/redhat
- vendor/google
- canonical/google chrome
- vendor/webkitgtk
- canonical/webkitgtk+
- canonical/chrome os
- vendor/fedoraproject
- canonical/fedora
- version/fedora/13
- vendor/debian
- canonical/debian
- version/debian/6.0
- version/debian/7.0