UBUNTU-CVE-2015-1276

Details

Use-after-free vulnerability in content/browser/indexed_db/indexed_db_backing_store.cc in the IndexedDB implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an abort action before a certain write operation.

Affected Packages

Ubuntu:14.04:LTSchromium-browser

Affected versions:

29.0.1547.65-0ubuntu231.0.1650.63-0ubuntu1~20131204.132.0.1700.107-0ubuntu1~20140204.977.133.0.1750.152-0ubuntu1~pkg995.134.0.1847.116-0ubuntu236.0.1985.125-0ubuntu1.14.04.0~pkg102937.0.2062.120-0ubuntu0.14.04.1~pkg104937.0.2062.94-0ubuntu0.14.04.1~pkg104238.0.2125.111-0ubuntu0.14.04.1.106139.0.2171.65-0ubuntu0.14.04.1.1064+5 more

Fixed in:

44.0.2403.89-0ubuntu0.14.04.1.1095

References

REPORThttp://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html REPORThttps://ubuntu.com/security/CVE-2015-1276 REPORThttps://ubuntu.com/security/notices/USN-2677-1 REPORThttps://www.cve.org/CVERecord?id=CVE-2015-1276

UBUNTU-CVE-2015-1276

Details

Affected Packages

References

CVSS Analysis

Related

Ecosystems

Timeline