CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
87.7%
The texSubImage2D implementation in the WebGL subsystem in Google Chrome before 20.0.1132.43 does not properly handle uploads to floating-point textures, which allows remote attackers to cause a denial of service (assertion failure and application crash) or possibly have unspecified other impact via a crafted web page, as demonstrated by certain WebGL performance tests, aka rdar problem 11520387.
Vendor | Product | Version | CPE |
---|---|---|---|
chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
chrome | 20.0.1132.0 | cpe:2.3:a:google:chrome:20.0.1132.0:*:*:*:*:*:*:* | |
chrome | 20.0.1132.1 | cpe:2.3:a:google:chrome:20.0.1132.1:*:*:*:*:*:*:* | |
chrome | 20.0.1132.2 | cpe:2.3:a:google:chrome:20.0.1132.2:*:*:*:*:*:*:* | |
chrome | 20.0.1132.3 | cpe:2.3:a:google:chrome:20.0.1132.3:*:*:*:*:*:*:* | |
chrome | 20.0.1132.4 | cpe:2.3:a:google:chrome:20.0.1132.4:*:*:*:*:*:*:* | |
chrome | 20.0.1132.5 | cpe:2.3:a:google:chrome:20.0.1132.5:*:*:*:*:*:*:* | |
chrome | 20.0.1132.6 | cpe:2.3:a:google:chrome:20.0.1132.6:*:*:*:*:*:*:* | |
chrome | 20.0.1132.7 | cpe:2.3:a:google:chrome:20.0.1132.7:*:*:*:*:*:*:* | |
chrome | 20.0.1132.8 | cpe:2.3:a:google:chrome:20.0.1132.8:*:*:*:*:*:*:* |
code.google.com/p/chromium/issues/detail?id=120977
googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html
trac.webkit.org/changeset/117191
trac.webkit.org/changeset/118410
bugs.webkit.org/show_bug.cgi?id=85942
chromiumcodereview.appspot.com/10444013
hermes.opensuse.org/messages/15075728
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14938