Описание
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion" for SELECT elements.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 35.0.1916.153-0ubuntu1~pkg1029 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [36.0.1985.125-0ubuntu1.14.04.0~pkg1029]] |
| lucid | ignored | end of life |
| precise | released | 36.0.1985.125-0ubuntu1.12.04.0~pkg897 |
| quantal | ignored | end of life |
| saucy | ignored | end of life |
| trusty | released | 36.0.1985.125-0ubuntu1.14.04.0~pkg1029 |
| trusty/esm | DNE | trusty was released [36.0.1985.125-0ubuntu1.14.04.0~pkg1029] |
| upstream | released | 34.0.1847.132 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.1.0~bzr640-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.0.4-0ubuntu0.14.04.1]] |
| lucid | DNE | |
| precise | DNE | |
| quantal | DNE | |
| saucy | DNE | |
| trusty | released | 1.0.4-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.0.4-0ubuntu0.14.04.1] |
| upstream | released | 1.0.4 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion" for SELECT elements.
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion" for SELECT elements.
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as ...
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion" for SELECT elements.
Уязвимость браузера Google Chrome, позволяющая злоумышленнику вызвать отказ в обслуживании
EPSS
7.5 High
CVSS2