Lucene search

K
ubuntucveUbuntu.comUB:CVE-2013-6631
HistoryNov 19, 2013 - 12:00 a.m.

CVE-2013-6631

2013-11-1900:00:00
ubuntu.com
ubuntu.com
12

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

86.2%

Use-after-free vulnerability in the Channel::SendRTCPPacket function in
voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome
before 31.0.1650.48 and other products, allows remote attackers to cause a
denial of service (heap memory corruption) or possibly have unspecified
other impact via vectors that trigger the absence of certain statistics
initialization, leading to the skipping of a required
DeRegisterExternalTransport call.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchchromium-browser< 31.0.1650.63-0ubuntu0.12.04.1~20131204.1UNKNOWN
ubuntu12.10noarchchromium-browser< 31.0.1650.63-0ubuntu0.12.10.1~20131204.1UNKNOWN
ubuntu13.04noarchchromium-browser< 31.0.1650.63-0ubuntu0.13.04.1~20131204.1UNKNOWN
ubuntu13.10noarchchromium-browser< 31.0.1650.63-0ubuntu0.13.10.1~20131204.1UNKNOWN

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

86.2%