PT-2013-2684 · Google · Skia+1

Published

2013-02-21

Updated

2024-06-15

CVE-2013-0888

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Skia versions prior to 25.0.1364.97 on Windows and Linux Skia versions prior to 25.0.1364.99 on Mac OS X

Description The issue allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to a "user gesture check for dangerous file downloads."

Recommendations For versions prior to 25.0.1364.97 on Windows and Linux, update to version 25.0.1364.97 or later. For versions prior to 25.0.1364.99 on Mac OS X, update to version 25.0.1364.99 or later.

Exploit

Fix

DoS

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2013-0888

OPENSUSE-SU-2024:10171-1

OPENSUSE-SU-2024:12948-1

Affected Products

Google Chrome

Skia

PT-2013-2684 · Google · Skia+1

CVE-2013-0888

Weakness Enumeration

Related Identifiers

Affected Products

References · 2341