CVE-2012-2868

2012-08-3100:00:00

ubuntu.com

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.4%

JSON

Race condition in Google Chrome before 21.0.1180.89 allows remote attackers
to cause a denial of service or possibly have unspecified other impact via
vectors involving improper interaction between worker processes and an
XMLHttpRequest (aka XHR) object.

Bugs

<http://code.google.com/p/chromium/issues/detail?id=136881>

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchchromium-browser< 3.0.1271.97-0ubuntu0.10.04.1UNKNOWN
ubuntu11.10noarchchromium-browser< 3.0.1271.97-0ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchchromium-browser< 3.0.1271.97-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchchromium-browser< 3.0.1271.97-0ubuntu0.12.10.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	chromium-browser	< 3.0.1271.97-0ubuntu0.10.04.1	UNKNOWN
ubuntu	11.10	noarch	chromium-browser	< 3.0.1271.97-0ubuntu0.11.10.1	UNKNOWN
ubuntu	12.04	noarch	chromium-browser	< 3.0.1271.97-0ubuntu0.12.04.1	UNKNOWN
ubuntu	12.10	noarch	chromium-browser	< 3.0.1271.97-0ubuntu0.12.10.1	UNKNOWN