PT-2014-3147 · Google+2 · Google Chrome+2

Published

2014-01-16

Updated

2024-06-15

CVE-2013-6645

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 32.0.1700.76 on Windows Google Chrome versions prior to 32.0.1700.77 on Mac OS X and Linux

Description A use-after-free issue exists in the OnWindowRemovingFromRootWindow function, which can be triggered by user-assisted remote attackers through certain actions involving print-preview and tab-switching that interact with a speech input element, potentially causing a denial of service or other unspecified impacts.

Recommendations For Google Chrome versions prior to 32.0.1700.76 on Windows, update to version 32.0.1700.76 or later. For Google Chrome versions prior to 32.0.1700.77 on Mac OS X and Linux, update to version 32.0.1700.77 or later.

Exploit

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2014-1088

CVE-2013-6645

DSA-2862-1

MGASA-2014-0037

OPENSUSE-SU-2014_0243-1

OPENSUSE-SU-2024:10171-1

OPENSUSE-SU-2024:12948-1

Affected Products

Alt Linux

Google Chrome

Suse

PT-2014-3147 · Google+2 · Google Chrome+2

CVE-2013-6645

Weakness Enumeration

Related Identifiers

Affected Products

References · 2381