CVE-2013-6635

Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers removal of a node during processing of the DOM tree, related to CompositeEditCommand.cpp and ReplaceSelectionCommand.cpp.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
VendorProductVersion
googlechrome
𝑥
≤ 31.0.1650.62
googlechrome
31.0.1650.0
googlechrome
31.0.1650.2
googlechrome
31.0.1650.3
googlechrome
31.0.1650.4
googlechrome
31.0.1650.5
googlechrome
31.0.1650.6
googlechrome
31.0.1650.7
googlechrome
31.0.1650.8
googlechrome
31.0.1650.9
googlechrome
31.0.1650.10
googlechrome
31.0.1650.11
googlechrome
31.0.1650.12
googlechrome
31.0.1650.13
googlechrome
31.0.1650.14
googlechrome
31.0.1650.15
googlechrome
31.0.1650.16
googlechrome
31.0.1650.17
googlechrome
31.0.1650.18
googlechrome
31.0.1650.19
googlechrome
31.0.1650.20
googlechrome
31.0.1650.22
googlechrome
31.0.1650.23
googlechrome
31.0.1650.25
googlechrome
31.0.1650.26
googlechrome
31.0.1650.27
googlechrome
31.0.1650.28
googlechrome
31.0.1650.29
googlechrome
31.0.1650.30
googlechrome
31.0.1650.31
googlechrome
31.0.1650.32
googlechrome
31.0.1650.33
googlechrome
31.0.1650.34
googlechrome
31.0.1650.35
googlechrome
31.0.1650.36
googlechrome
31.0.1650.37
googlechrome
31.0.1650.38
googlechrome
31.0.1650.39
googlechrome
31.0.1650.41
googlechrome
31.0.1650.42
googlechrome
31.0.1650.43
googlechrome
31.0.1650.44
googlechrome
31.0.1650.45
googlechrome
31.0.1650.46
googlechrome
31.0.1650.47
googlechrome
31.0.1650.48
googlechrome
31.0.1650.49
googlechrome
31.0.1650.50
googlechrome
31.0.1650.51
googlechrome
31.0.1650.52
googlechrome
31.0.1650.53
googlechrome
31.0.1650.54
googlechrome
31.0.1650.55
googlechrome
31.0.1650.57
googlechrome
31.0.1650.58
googlechrome
31.0.1650.59
googlechrome
31.0.1650.60
googlechrome
31.0.1650.61
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
saucy
Fixed 31.0.1650.63-0ubuntu0.13.10.1~20131204.1
released
raring
Fixed 31.0.1650.63-0ubuntu0.13.04.1~20131204.1
released
quantal
Fixed 31.0.1650.63-0ubuntu0.12.10.1~20131204.1
released
precise
Fixed 31.0.1650.63-0ubuntu0.12.04.1~20131204.1
released
lucid
ignored
Common Weakness Enumeration
References
http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
http://secunia.com/advisories/56217
http://support.apple.com/kb/HT6145
http://support.apple.com/kb/HT6162
http://support.apple.com/kb/HT6163
http://www.debian.org/security/2013/dsa-2811
http://www.securitytracker.com/id/1029442
https://code.google.com/p/chromium/issues/detail?id=314469
https://src.chromium.org/viewvc/blink?revision=161598&view=revision
https://support.apple.com/kb/HT6537
http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html
http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
http://secunia.com/advisories/56217
http://support.apple.com/kb/HT6145
http://support.apple.com/kb/HT6162
http://support.apple.com/kb/HT6163
http://www.debian.org/security/2013/dsa-2811
http://www.securitytracker.com/id/1029442
https://code.google.com/p/chromium/issues/detail?id=314469
https://src.chromium.org/viewvc/blink?revision=161598&view=revision
https://support.apple.com/kb/HT6537