Upstream information

CVE-2010-4040 at MITRE

Description

Google Chrome before 7.0.517.41 does not properly handle animated GIF images, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted image.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 9.3
Vector AV:N/AC:M/Au:N/C:C/I:C/A:C
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
SUSE Bugzilla entries: 655970 [RESOLVED / WONTFIX], 659342 [RESOLVED / FIXED], 659343 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Software Development Kit 11 SP4
  • libwebkit-1_0-2 >= 1.2.7-0.17.1
  • libwebkit-devel >= 1.2.7-0.17.1
  • libwebkit-lang >= 1.2.7-0.17.1
Patchnames:
SUSE Linux Enterprise Software Development Kit 11 SP4 GA libwebkit-1_0-2
openSUSE 11.2
  • libwebkit-1_0-2-debuginfo >= 1.2.6-0.5.1
  • libwebkit-debugsource >= 1.2.6-0.5.1
  • webkit-jsc-debuginfo >= 1.2.6-0.5.1
openSUSE 11.2
  • libwebkit-1_0-2 >= 1.2.6-0.5.1
  • libwebkit-devel >= 1.2.6-0.5.1
  • libwebkit-lang >= 1.2.6-0.5.1
  • webkit-jsc >= 1.2.6-0.5.1
openSUSE 11.3
  • libwebkit-1_0-2-debuginfo >= 1.2.6-0.2.1
  • libwebkit-1_0-2-debuginfo-32bit >= 1.2.6-0.2.1
  • libwebkit-debugsource >= 1.2.6-0.2.1
  • webkit-jsc-debuginfo >= 1.2.6-0.2.1
openSUSE 11.3
  • libwebkit-1_0-2 >= 1.2.6-0.2.1
  • libwebkit-1_0-2-32bit >= 1.2.6-0.2.1
  • libwebkit-devel >= 1.2.6-0.2.1
  • libwebkit-lang >= 1.2.6-0.2.1
  • webkit-jsc >= 1.2.6-0.2.1