Lucene search
+L

525 matches found

Debian
Debian
added 2013/10/26 7:3 p.m.40 views

[SECURITY] [DSA 2785-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2785-1 [email protected] http://www.debian.org/security/ Michael Gilbert October 26, 2013 http://www.debian.org/security/faq -...

7.5CVSS7.1AI score0.02531EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/10/26 12:0 a.m.44 views

Debian Security Advisory DSA 2785-1 (chromium-browser - several vulnerabilities)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-2906 Atte Kettunen of OUSPG discovered race conditions in Web Audio. CVE-2013-2907 Boris Zbarsky discovered an out-of-bounds read in window.prototype. CVE-2013-2908 Chamal de Silva discovered an address bar spoofin...

7.5CVSS0.5AI score0.02531EPSS
Exploits1References1
OSV
OSV
added 2013/10/26 12:0 a.m.35 views

DSA-2785-1 chromium-browser - several

Bulletin has no description...

7.5CVSS9.7AI score0.02531EPSS
Exploits1
NVD
NVD
added 2013/10/02 10:35 a.m.8 views

CVE-2013-2910

Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

7.5CVSS7AI score0.0145EPSS
Exploits0References8
NVD
NVD
added 2013/10/02 10:35 a.m.11 views

CVE-2013-2917

The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to the...

5CVSS6AI score0.01461EPSS
Exploits0References8
NVD
NVD
added 2013/10/02 10:35 a.m.21 views

CVE-2013-2906

Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...

6.8CVSS7AI score0.01229EPSS
Exploits0References16
Prion
Prion
added 2013/10/02 10:35 a.m.10 views

Design/Logic Flaw

Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

7.5CVSS7.5AI score0.0145EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2013/10/02 10:35 a.m.19 views

Out-of-bounds

The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to the...

5CVSS6.6AI score0.01461EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2013/10/02 10:35 a.m.15 views

Race condition

Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...

6.8CVSS7.6AI score0.01229EPSS
Exploits0References16Affected Software1
UbuntuCve
UbuntuCve
added 2013/10/02 10:35 a.m.17 views

CVE-2013-2910

Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

7.5CVSS7.2AI score0.0145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2013/10/02 10:35 a.m.25 views

CVE-2013-2906

Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...

6.8CVSS7.3AI score0.01229EPSS
Exploits0References12
CVE
CVE
added 2013/10/02 10:0 a.m.76 views

CVE-2013-2906

CVE-2013-2906 involves race conditions in the Web Audio implementation (Blink) used by Google Chrome and Chromium up to version 30.0.1599.66. Exploitation could lead to denial of service or other impact; multiple vendor advisories list this fix as part of the Chrome/Chromium security updates. Aff...

6.8CVSS7AI score0.01229EPSS
Exploits0References16Affected Software1
Cvelist
Cvelist
added 2013/10/02 10:0 a.m.24 views

CVE-2013-2917

The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to the...

5.8AI score0.01461EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2013/10/02 10:0 a.m.25 views

CVE-2013-2917

Removed by vendor...

5CVSS9.4AI score0.01461EPSS
Exploits0
CVE
CVE
added 2013/10/02 10:0 a.m.75 views

CVE-2013-2910

CVE-2013-2910 is a use-after-free in Web Audio (AudioScheduledSourceNode.cpp) within Blink’s Web Audio implementation used by Chrome pre-30.0.1599.66. The vulnerability could allow a remote attacker to cause a denial of service or other unspecified impact via unknown vectors. Public documents in ...

7.5CVSS7AI score0.0145EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2013/10/02 10:0 a.m.71 views

CVE-2013-2917

CVE-2013-2917 concerns the Chromium/Blink Web Audio implementation. The ReverbConvolverStage used in core/platform/audio/ReverbConvolverStage.cpp contains an out-of-bounds read in the impulseResponse array, enabling a remote attacker to trigger a denial of service. Affected product/version lineag...

5CVSS6AI score0.01461EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2013/10/02 10:0 a.m.21 views

CVE-2013-2906

Removed by vendor...

6.8CVSS9.4AI score0.01229EPSS
Exploits0
Debian CVE
Debian CVE
added 2013/10/02 10:0 a.m.25 views

CVE-2013-2910

Removed by vendor...

7.5CVSS9.4AI score0.0145EPSS
Exploits0
Cvelist
Cvelist
added 2013/10/02 10:0 a.m.19 views

CVE-2013-2910

Use-after-free vulnerability in modules/webaudio/AudioScheduledSourceNode.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

6.9AI score0.0145EPSS
Exploits0References8
Cvelist
Cvelist
added 2013/10/02 10:0 a.m.21 views

CVE-2013-2906

Multiple race conditions in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to threading in core/html/HTMLMediaElement.cpp,...

6.9AI score0.01229EPSS
Exploits0References16
Rows per page
Query Builder