CVE-2013-6649

Use-after-free vulnerability in the RenderSVGImage::paint function in core/rendering/svg/RenderSVGImage.cpp in Blink, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a zero-size SVG image.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
VendorProductVersion
googlechrome
𝑥
≤ 32.0.1700.101
googlechrome
32.0.1700.0
googlechrome
32.0.1700.2
googlechrome
32.0.1700.3
googlechrome
32.0.1700.4
googlechrome
32.0.1700.5
googlechrome
32.0.1700.6
googlechrome
32.0.1700.7
googlechrome
32.0.1700.8
googlechrome
32.0.1700.9
googlechrome
32.0.1700.10
googlechrome
32.0.1700.11
googlechrome
32.0.1700.12
googlechrome
32.0.1700.13
googlechrome
32.0.1700.14
googlechrome
32.0.1700.15
googlechrome
32.0.1700.16
googlechrome
32.0.1700.17
googlechrome
32.0.1700.18
googlechrome
32.0.1700.19
googlechrome
32.0.1700.21
googlechrome
32.0.1700.22
googlechrome
32.0.1700.23
googlechrome
32.0.1700.24
googlechrome
32.0.1700.26
googlechrome
32.0.1700.27
googlechrome
32.0.1700.28
googlechrome
32.0.1700.29
googlechrome
32.0.1700.30
googlechrome
32.0.1700.31
googlechrome
32.0.1700.32
googlechrome
32.0.1700.33
googlechrome
32.0.1700.34
googlechrome
32.0.1700.35
googlechrome
32.0.1700.38
googlechrome
32.0.1700.39
googlechrome
32.0.1700.41
googlechrome
32.0.1700.50
googlechrome
32.0.1700.51
googlechrome
32.0.1700.52
googlechrome
32.0.1700.53
googlechrome
32.0.1700.54
googlechrome
32.0.1700.55
googlechrome
32.0.1700.56
googlechrome
32.0.1700.57
googlechrome
32.0.1700.58
googlechrome
32.0.1700.59
googlechrome
32.0.1700.62
googlechrome
32.0.1700.63
googlechrome
32.0.1700.64
googlechrome
32.0.1700.65
googlechrome
32.0.1700.66
googlechrome
32.0.1700.67
googlechrome
32.0.1700.68
googlechrome
32.0.1700.69
googlechrome
32.0.1700.70
googlechrome
32.0.1700.71
googlechrome
32.0.1700.72
googlechrome
32.0.1700.74
googlechrome
32.0.1700.75
googlechrome
32.0.1700.76
googlechrome
32.0.1700.77
googlechrome
32.0.1700.94
googlechrome
32.0.1700.95
googlechrome
32.0.1700.96
googlechrome
32.0.1700.97
googlechrome
32.0.1700.98
googlechrome
32.0.1700.99
googlechrome
32.0.1700.100
debiandebian_linux
7.0
debiandebian_linux
8.0
opensuseopensuse
12.3
opensuseopensuse
13.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
saucy
Fixed 33.0.1750.152-0ubuntu0.13.10.1~pkg984.1
released
quantal
Fixed 33.0.1750.152-0ubuntu0.12.10.1~pkg895.1
released
precise
Fixed 33.0.1750.152-0ubuntu0.12.04.1~pkg879.1
released
lucid
ignored
Common Weakness Enumeration
References
http://crbug.com/330420
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.html
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html
http://www.debian.org/security/2014/dsa-2862
https://src.chromium.org/viewvc/blink?revision=164536&view=revision
http://crbug.com/330420
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.html
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html
http://www.debian.org/security/2014/dsa-2862
https://src.chromium.org/viewvc/blink?revision=164536&view=revision