CVE-2012-2846

EUVD-2012-2826
Google Chrome before 21.0.1180.57 on Linux does not properly isolate renderer processes, which allows remote attackers to cause a denial of service (cross-process interference) via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
≤ 21.0.1180.56
googlechrome
21.0.1180.0
googlechrome
21.0.1180.1
googlechrome
21.0.1180.2
googlechrome
21.0.1180.31
googlechrome
21.0.1180.32
googlechrome
21.0.1180.33
googlechrome
21.0.1180.34
googlechrome
21.0.1180.35
googlechrome
21.0.1180.36
googlechrome
21.0.1180.37
googlechrome
21.0.1180.38
googlechrome
21.0.1180.39
googlechrome
21.0.1180.41
googlechrome
21.0.1180.46
googlechrome
21.0.1180.47
googlechrome
21.0.1180.48
googlechrome
21.0.1180.49
googlechrome
21.0.1180.50
googlechrome
21.0.1180.51
googlechrome
21.0.1180.52
googlechrome
21.0.1180.53
googlechrome
21.0.1180.54
googlechrome
21.0.1180.55
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
hardy
dne
lucid
Fixed 3.0.1271.97-0ubuntu0.10.04.1
released
natty
ignored
oneiric
Fixed 3.0.1271.97-0ubuntu0.11.10.1
released
precise
Fixed 3.0.1271.97-0ubuntu0.12.04.1
released
quantal
Fixed 3.0.1271.97-0ubuntu0.12.10.1
released
References
http://code.google.com/p/chromium/issues/detail?id=125225
http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html
http://code.google.com/p/chromium/issues/detail?id=125225
http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html