Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2014-1713

Опубликовано: 26 янв. 2015
Источник: redhat
CVSS2: 5.1
EPSS Низкий

Описание

Use-after-free vulnerability in the AttributeSetter function in bindings/templates/attributes.cpp in the bindings in Blink, as used in Google Chrome before 33.0.1750.152 on OS X and Linux and before 33.0.1750.154 on Windows, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the document.location value.

Отчет

Red Hat Product Security has rated this issue as having Moderate security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6webkitgtkWill not fix
Red Hat Enterprise Linux 7webkitgtk3Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=1186271webkitgtk: use-after-free in the AttributeSetter function (WSA-2015-0001)

EPSS

Процентиль: 83%
0.01924
Низкий

5.1 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2014-1713

ubuntu
больше 11 лет назад

Use-after-free vulnerability in the AttributeSetter function in bindings/templates/attributes.cpp in the bindings in Blink, as used in Google Chrome before 33.0.1750.152 on OS X and Linux and before 33.0.1750.154 on Windows, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the document.location value.

nvd логотип

CVE-2014-1713

nvd
больше 11 лет назад

Use-after-free vulnerability in the AttributeSetter function in bindings/templates/attributes.cpp in the bindings in Blink, as used in Google Chrome before 33.0.1750.152 on OS X and Linux and before 33.0.1750.154 on Windows, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the document.location value.

debian логотип

CVE-2014-1713

debian
больше 11 лет назад

Use-after-free vulnerability in the AttributeSetter function in bindin ...

github логотип

GHSA-hc29-7pc8-xhxq

github
около 3 лет назад

Use-after-free vulnerability in the AttributeSetter function in bindings/templates/attributes.cpp in the bindings in Blink, as used in Google Chrome before 33.0.1750.152 on OS X and Linux and before 33.0.1750.154 on Windows, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the document.location value.

fstec логотип

BDU:2015-00103

fstec
больше 11 лет назад

Уязвимость браузера Google Chrome, позволяющая злоумышленнику вызвать отказ в обслуживании

EPSS

Процентиль: 83%
0.01924
Низкий

5.1 Medium

CVSS2