Lucene search

ChromeCVE-2012-2819

HistoryJun 27, 2012 - 10:18 a.m.

CVE-2012-2819

2012-06-2710:18:38

CWE-20

Chrome

web.nvd.nist.gov

cve-2012-2819

google chrome

webgl

denial of service

vulnerability

nvd

assertion failure

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.017

Percentile

87.7%

JSON

The texSubImage2D implementation in the WebGL subsystem in Google Chrome before 20.0.1132.43 does not properly handle uploads to floating-point textures, which allows remote attackers to cause a denial of service (assertion failure and application crash) or possibly have unspecified other impact via a crafted web page, as demonstrated by certain WebGL performance tests, aka rdar problem 11520387.

Affected configurations

Nvd

Node

googlechromeRange≤20.0.1132.42

googlechromeMatch20.0.1132.0

googlechromeMatch20.0.1132.1

googlechromeMatch20.0.1132.2

googlechromeMatch20.0.1132.3

googlechromeMatch20.0.1132.4

googlechromeMatch20.0.1132.5

googlechromeMatch20.0.1132.6

googlechromeMatch20.0.1132.7

googlechromeMatch20.0.1132.8

googlechromeMatch20.0.1132.9

googlechromeMatch20.0.1132.10

googlechromeMatch20.0.1132.11

googlechromeMatch20.0.1132.12

googlechromeMatch20.0.1132.13

googlechromeMatch20.0.1132.14

googlechromeMatch20.0.1132.15

googlechromeMatch20.0.1132.16

googlechromeMatch20.0.1132.17

googlechromeMatch20.0.1132.18

googlechromeMatch20.0.1132.19

googlechromeMatch20.0.1132.20

googlechromeMatch20.0.1132.21

googlechromeMatch20.0.1132.22

googlechromeMatch20.0.1132.23

googlechromeMatch20.0.1132.24

googlechromeMatch20.0.1132.25

googlechromeMatch20.0.1132.26

googlechromeMatch20.0.1132.27

googlechromeMatch20.0.1132.28

googlechromeMatch20.0.1132.29

googlechromeMatch20.0.1132.30

googlechromeMatch20.0.1132.31

googlechromeMatch20.0.1132.32

googlechromeMatch20.0.1132.33

googlechromeMatch20.0.1132.34

googlechromeMatch20.0.1132.35

googlechromeMatch20.0.1132.36

googlechromeMatch20.0.1132.37

googlechromeMatch20.0.1132.38

googlechromeMatch20.0.1132.39

googlechromeMatch20.0.1132.40

googlechromeMatch20.0.1132.41

VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
googlechrome20.0.1132.0cpe:2.3:a:google:chrome:20.0.1132.0:*:*:*:*:*:*:*
googlechrome20.0.1132.1cpe:2.3:a:google:chrome:20.0.1132.1:*:*:*:*:*:*:*
googlechrome20.0.1132.2cpe:2.3:a:google:chrome:20.0.1132.2:*:*:*:*:*:*:*
googlechrome20.0.1132.3cpe:2.3:a:google:chrome:20.0.1132.3:*:*:*:*:*:*:*
googlechrome20.0.1132.4cpe:2.3:a:google:chrome:20.0.1132.4:*:*:*:*:*:*:*
googlechrome20.0.1132.5cpe:2.3:a:google:chrome:20.0.1132.5:*:*:*:*:*:*:*
googlechrome20.0.1132.6cpe:2.3:a:google:chrome:20.0.1132.6:*:*:*:*:*:*:*
googlechrome20.0.1132.7cpe:2.3:a:google:chrome:20.0.1132.7:*:*:*:*:*:*:*
googlechrome20.0.1132.8cpe:2.3:a:google:chrome:20.0.1132.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	chrome	*	cpe:2.3:a:google:chrome::::::::
google	chrome	20.0.1132.0	cpe:2.3:a:google:chrome:20.0.1132.0:::::::*
google	chrome	20.0.1132.1	cpe:2.3:a:google:chrome:20.0.1132.1:::::::*
google	chrome	20.0.1132.2	cpe:2.3:a:google:chrome:20.0.1132.2:::::::*
google	chrome	20.0.1132.3	cpe:2.3:a:google:chrome:20.0.1132.3:::::::*
google	chrome	20.0.1132.4	cpe:2.3:a:google:chrome:20.0.1132.4:::::::*
google	chrome	20.0.1132.5	cpe:2.3:a:google:chrome:20.0.1132.5:::::::*
google	chrome	20.0.1132.6	cpe:2.3:a:google:chrome:20.0.1132.6:::::::*
google	chrome	20.0.1132.7	cpe:2.3:a:google:chrome:20.0.1132.7:::::::*
google	chrome	20.0.1132.8	cpe:2.3:a:google:chrome:20.0.1132.8:::::::*