http://secunia.com/advisories/39544/
Description
Some vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct cross-site request forgery and cross-site scripting attacks or potentially compromise a user’s system.
1) An unspecified error exists in the type handling related to forms.
2) An unspecified error in the handling of HTTP requests can potentially be exploited to conduct cross-site request forgery attacks.
3) An unspecified error exists related to local file references through developer tools.
4) An unspecified error related to “chrome://net-internals” can be exploited to conduct cross-site scripting attacks.
5) An unspecified error related to “chrome://downloads” can be exploited to conduct cross-site scripting attacks.
6) An unspecified error may cause pages to load with privileges of the “New Tab” page.
7) An unspecified error in V8 bindings can be exploited to corrupt memory.
Solution
Update to version 4.1.249.1059.
Other links
Other resources
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1500
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1501
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1502
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1503
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1504
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1505
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1506