CVE-2010-0649 (retired)

Priority
Description
Integer overflow in the CrossCallParamsEx::CreateFromBuffer function in
sandbox/src/crosscall_server.cc in Google Chrome before 4.0.249.89 allows
attackers to leverage renderer access to cause a denial of service (heap
memory corruption) or possibly have unspecified other impact via a
malformed message, related to deserializing of sandbox messages.
Package
Upstream:needs-triage
Patches:
Upstream:http://src.chromium.org/viewvc/chrome?view=rev&revision=36923
More Information

Updated: 2019-09-19 15:27:08 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)