Google Chrome before 22.0.1229.79 does not properly handle plug-ins, which allows remote attackers to cause a denial of service (DOM tree corruption) or possibly have unspecified other impact via unknown vectors.
googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html
lists.opensuse.org/opensuse-security-announce/2012-10/msg00012.html
code.google.com/p/chromium/issues/detail?id=139814
exchange.xforce.ibmcloud.com/vulnerabilities/78825
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14920