CVE-2012-2900

EUVD-2012-2880
Skia, as used in Google Chrome before 22.0.1229.92, does not properly render text, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
≤ 22.0.1229.91
googlechrome
22.0.1229.0
googlechrome
22.0.1229.1
googlechrome
22.0.1229.2
googlechrome
22.0.1229.3
googlechrome
22.0.1229.4
googlechrome
22.0.1229.6
googlechrome
22.0.1229.7
googlechrome
22.0.1229.8
googlechrome
22.0.1229.9
googlechrome
22.0.1229.10
googlechrome
22.0.1229.11
googlechrome
22.0.1229.12
googlechrome
22.0.1229.14
googlechrome
22.0.1229.16
googlechrome
22.0.1229.17
googlechrome
22.0.1229.18
googlechrome
22.0.1229.20
googlechrome
22.0.1229.21
googlechrome
22.0.1229.22
googlechrome
22.0.1229.23
googlechrome
22.0.1229.24
googlechrome
22.0.1229.25
googlechrome
22.0.1229.26
googlechrome
22.0.1229.27
googlechrome
22.0.1229.28
googlechrome
22.0.1229.29
googlechrome
22.0.1229.31
googlechrome
22.0.1229.32
googlechrome
22.0.1229.33
googlechrome
22.0.1229.35
googlechrome
22.0.1229.36
googlechrome
22.0.1229.37
googlechrome
22.0.1229.39
googlechrome
22.0.1229.48
googlechrome
22.0.1229.49
googlechrome
22.0.1229.50
googlechrome
22.0.1229.51
googlechrome
22.0.1229.52
googlechrome
22.0.1229.53
googlechrome
22.0.1229.54
googlechrome
22.0.1229.55
googlechrome
22.0.1229.56
googlechrome
22.0.1229.57
googlechrome
22.0.1229.58
googlechrome
22.0.1229.59
googlechrome
22.0.1229.60
googlechrome
22.0.1229.62
googlechrome
22.0.1229.63
googlechrome
22.0.1229.64
googlechrome
22.0.1229.65
googlechrome
22.0.1229.67
googlechrome
22.0.1229.76
googlechrome
22.0.1229.78
googlechrome
22.0.1229.79
googlechrome
22.0.1229.89
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
hardy
dne
lucid
Fixed 3.0.1271.97-0ubuntu0.10.04.1
released
natty
ignored
oneiric
Fixed 3.0.1271.97-0ubuntu0.11.10.1
released
precise
Fixed 3.0.1271.97-0ubuntu0.12.04.1
released
quantal
Fixed 3.0.1271.97-0ubuntu0.12.10.1
released
References
http://googlechromereleases.blogspot.com/2012/10/stable-channel-update.html
https://code.google.com/p/chromium/issues/detail?id=138208
https://exchange.xforce.ibmcloud.com/vulnerabilities/79063
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15725
http://googlechromereleases.blogspot.com/2012/10/stable-channel-update.html
https://code.google.com/p/chromium/issues/detail?id=138208
https://exchange.xforce.ibmcloud.com/vulnerabilities/79063
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15725