Alert GCSA-13016 - Vulnerabilita' in Google Chrome
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-13016
Data : 25 Febbraio 2013
Titolo : Vulnerabilita' in Google Chrome
******************************************************************
:: Descrizione del problema
Sono state riportate vulnerabilita' multiple in Google Chrome,
alcune con impatto sconosciuto, mentre altre potrebbero essere sfruttate
da utenti malevoli per oltrepassare alcune restrizioni di sicurezza
e per compromettere il sistema.
Per una descrizione completa delle vulnerabilita' si rimanda alla sezione "Riferimenti".
:: Software interessato
Google Chrome 24.x
:: Impatto
Accesso al sistema
Security Bypass
Impatto sconosciuto
:: Soluzioni
Aggiornare Google Chrome alla versione 25.0.1364.97 per Windows e Linux
e alla versione 25.0.1364.99 per Mac.
Per l'installazione manuale scaricare il software dal sito ufficiale:
http://www.google.com/chrome/?hl=it
:: Riferimenti
Google Chrome Releases:
http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html
Secunia:
http://secunia.com/advisories/52320/
Mitre CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0879
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0880
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0881
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0882
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0883
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0884
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0885
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0886
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0887
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0888
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0889
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0890
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0891
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0892
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0893
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0894
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0895
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0896
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0897
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0898
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0899
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0900
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFRK0TBwZxMk2USYEIRAu23AKDBWHzJGnOUBR0IQGW/0lgg3xnDLACgtCdh
m+5niGfarShZwd80PSTodJE=
=+f5N
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-13016
Data : 25 Febbraio 2013
Titolo : Vulnerabilita' in Google Chrome
******************************************************************
:: Descrizione del problema
Sono state riportate vulnerabilita' multiple in Google Chrome,
alcune con impatto sconosciuto, mentre altre potrebbero essere sfruttate
da utenti malevoli per oltrepassare alcune restrizioni di sicurezza
e per compromettere il sistema.
Per una descrizione completa delle vulnerabilita' si rimanda alla sezione "Riferimenti".
:: Software interessato
Google Chrome 24.x
:: Impatto
Accesso al sistema
Security Bypass
Impatto sconosciuto
:: Soluzioni
Aggiornare Google Chrome alla versione 25.0.1364.97 per Windows e Linux
e alla versione 25.0.1364.99 per Mac.
Per l'installazione manuale scaricare il software dal sito ufficiale:
http://www.google.com/chrome/?hl=it
:: Riferimenti
Google Chrome Releases:
http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html
Secunia:
http://secunia.com/advisories/52320/
Mitre CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0879
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0880
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0881
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0882
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0883
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0884
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0885
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0886
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0887
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0888
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0889
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0890
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0891
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0892
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0893
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0894
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0895
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0896
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0897
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0898
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0899
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0900
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFRK0TBwZxMk2USYEIRAu23AKDBWHzJGnOUBR0IQGW/0lgg3xnDLACgtCdh
m+5niGfarShZwd80PSTodJE=
=+f5N
-----END PGP SIGNATURE-----