Lucene search

K
ubuntucveUbuntu.comUB:CVE-2015-1228
HistoryMar 08, 2015 - 12:00 a.m.

CVE-2015-1228

2015-03-0800:00:00
ubuntu.com
ubuntu.com
22
rendercounter
blink
google chrome
denial of service
css
memory initialization

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.016

Percentile

87.8%

The RenderCounter::updateCounter function in
core/rendering/RenderCounter.cpp in Blink, as used in Google Chrome before
41.0.2272.76, does not force a relayout operation and consequently does not
initialize memory for a data structure, which allows remote attackers to
cause a denial of service (application crash) or possibly have unspecified
other impact via a crafted Cascading Style Sheets (CSS) token sequence.

OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchchromium-browser< 41.0.2272.76-0ubuntu0.14.04.1.1076UNKNOWN
ubuntu14.10noarchchromium-browser< 41.0.2272.76-0ubuntu0.14.10.1.1118UNKNOWN
ubuntu15.04noarchchromium-browser< 41.0.2272.76-0ubuntu1.1134UNKNOWN
ubuntu15.10noarchchromium-browser< 41.0.2272.76-0ubuntu1.1134UNKNOWN
ubuntu14.04noarchoxide-qt< 1.5.5-0ubuntu0.14.04.3UNKNOWN
ubuntu14.10noarchoxide-qt< 1.5.5-0ubuntu0.14.10.2UNKNOWN
ubuntu15.04noarchoxide-qt< 1.5.5-0ubuntu1UNKNOWN
ubuntu15.10noarchoxide-qt< 1.5.5-0ubuntu1UNKNOWN

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.016

Percentile

87.8%