First published: Fri Jan 14 2011(Updated: )
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets (CSS) token sequences in conjunction with CANVAS elements, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome OS | <8.0.552.344 | |
Google Chrome | <8.0.552.237 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2011-0473 is classified as a denial of service vulnerability.
To fix CVE-2011-0473, update Google Chrome to version 8.0.552.238 or later, or update Chrome OS to version 8.0.552.345 or later.
CVE-2011-0473 affects Google Chrome prior to version 8.0.552.237 and Chrome OS prior to version 8.0.552.344.
CVE-2011-0473 allows remote attackers to potentially cause a denial of service through improper handling of CSS token sequences.
There are no known workarounds for CVE-2011-0473; users should update their software to mitigate the risk.