CVE-2013-6649

EUVD-2013-6451
Use-after-free vulnerability in the RenderSVGImage::paint function in core/rendering/svg/RenderSVGImage.cpp in Blink, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a zero-size SVG image.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
≤ 32.0.1700.101
googlechrome
32.0.1700.0
googlechrome
32.0.1700.2
googlechrome
32.0.1700.3
googlechrome
32.0.1700.4
googlechrome
32.0.1700.5
googlechrome
32.0.1700.6
googlechrome
32.0.1700.7
googlechrome
32.0.1700.8
googlechrome
32.0.1700.9
googlechrome
32.0.1700.10
googlechrome
32.0.1700.11
googlechrome
32.0.1700.12
googlechrome
32.0.1700.13
googlechrome
32.0.1700.14
googlechrome
32.0.1700.15
googlechrome
32.0.1700.16
googlechrome
32.0.1700.17
googlechrome
32.0.1700.18
googlechrome
32.0.1700.19
googlechrome
32.0.1700.21
googlechrome
32.0.1700.22
googlechrome
32.0.1700.23
googlechrome
32.0.1700.24
googlechrome
32.0.1700.26
googlechrome
32.0.1700.27
googlechrome
32.0.1700.28
googlechrome
32.0.1700.29
googlechrome
32.0.1700.30
googlechrome
32.0.1700.31
googlechrome
32.0.1700.32
googlechrome
32.0.1700.33
googlechrome
32.0.1700.34
googlechrome
32.0.1700.35
googlechrome
32.0.1700.38
googlechrome
32.0.1700.39
googlechrome
32.0.1700.41
googlechrome
32.0.1700.50
googlechrome
32.0.1700.51
googlechrome
32.0.1700.52
googlechrome
32.0.1700.53
googlechrome
32.0.1700.54
googlechrome
32.0.1700.55
googlechrome
32.0.1700.56
googlechrome
32.0.1700.57
googlechrome
32.0.1700.58
googlechrome
32.0.1700.59
googlechrome
32.0.1700.62
googlechrome
32.0.1700.63
googlechrome
32.0.1700.64
googlechrome
32.0.1700.65
googlechrome
32.0.1700.66
googlechrome
32.0.1700.67
googlechrome
32.0.1700.68
googlechrome
32.0.1700.69
googlechrome
32.0.1700.70
googlechrome
32.0.1700.71
googlechrome
32.0.1700.72
googlechrome
32.0.1700.74
googlechrome
32.0.1700.75
googlechrome
32.0.1700.76
googlechrome
32.0.1700.77
googlechrome
32.0.1700.94
googlechrome
32.0.1700.95
googlechrome
32.0.1700.96
googlechrome
32.0.1700.97
googlechrome
32.0.1700.98
googlechrome
32.0.1700.99
googlechrome
32.0.1700.100
debiandebian_linux
7.0
debiandebian_linux
8.0
opensuseopensuse
12.3
opensuseopensuse
13.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
lucid
ignored
precise
Fixed 33.0.1750.152-0ubuntu0.12.04.1~pkg879.1
released
quantal
Fixed 33.0.1750.152-0ubuntu0.12.10.1~pkg895.1
released
saucy
Fixed 33.0.1750.152-0ubuntu0.13.10.1~pkg984.1
released
Common Weakness Enumeration
References
http://crbug.com/330420
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.html
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html
http://www.debian.org/security/2014/dsa-2862
https://src.chromium.org/viewvc/blink?revision=164536&view=revision
http://crbug.com/330420
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.html
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html
http://www.debian.org/security/2014/dsa-2862
https://src.chromium.org/viewvc/blink?revision=164536&view=revision