CVE-2015-1272

2015-07-2200:00:00

ubuntu.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.9%

JSON

Use-after-free vulnerability in the GPU process implementation in Google
Chrome before 44.0.2403.89 allows remote attackers to cause a denial of
service or possibly have unspecified other impact by leveraging the
continued availability of a GPUChannelHost data structure during Blink
shutdown, related to
content/browser/gpu/browser_gpu_channel_host_factory.cc and
content/renderer/render_thread_impl.cc.

Bugs

<https://code.google.com/p/chromium/issues/detail?id=451456>

OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchchromium-browser< 44.0.2403.89-0ubuntu0.14.04.1.1095UNKNOWN
ubuntu15.04noarchchromium-browser< 44.0.2403.89-0ubuntu0.15.04.1.1177UNKNOWN
ubuntu15.10noarchchromium-browser< 44.0.2403.89-0ubuntu1.1195UNKNOWN
ubuntu14.04noarchoxide-qt< 1.8.4-0ubuntu0.14.04.1UNKNOWN
ubuntu15.04noarchoxide-qt< 1.8.4-0ubuntu0.15.04.1UNKNOWN
ubuntu15.10noarchoxide-qt< 1.8.4-0ubuntu1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	14.04	noarch	chromium-browser	< 44.0.2403.89-0ubuntu0.14.04.1.1095	UNKNOWN
ubuntu	15.04	noarch	chromium-browser	< 44.0.2403.89-0ubuntu0.15.04.1.1177	UNKNOWN
ubuntu	15.10	noarch	chromium-browser	< 44.0.2403.89-0ubuntu1.1195	UNKNOWN
ubuntu	14.04	noarch	oxide-qt	< 1.8.4-0ubuntu0.14.04.1	UNKNOWN
ubuntu	15.04	noarch	oxide-qt	< 1.8.4-0ubuntu0.15.04.1	UNKNOWN
ubuntu	15.10	noarch	oxide-qt	< 1.8.4-0ubuntu1	UNKNOWN