CVE-2013-2856 — Use After Free in Google Chrome

CWE-416 — Use After Free4 documents3 sources

Severity

7.5HIGHNVD

OSV2.6

EPSS

0.7%

top 27.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Eglibc Google Chrome Debian Linux

Timeline

PublishedJun 5

Latest updateMay 17

Description

Use-after-free vulnerability in Google Chrome before 27.0.1453.110 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of input.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDgoogle/chrome27.0.1453.109+80

▶Ubuntueglibc/eglibc< 2.19-0ubuntu6.9+1

Also affects: Debian Linux 7.0, 8.0

🔴Vulnerability Details

GHSA

GHSA-3ww4-5h8f-6c2q: Use-after-free vulnerability in Google Chrome before 27↗2022-05-17

▶

OSV

eglibc, glibc regression↗2016-05-26

▶

OSV

eglibc, glibc vulnerabilities↗2016-05-25

▶