CVE-2015-1209
06.02.2015, 11:59
Use-after-free vulnerability in the VisibleSelection::nonBoundaryShadowTreeRootNode function in core/editing/VisibleSelection.cpp in the DOM implementation in Blink, as used in Google Chrome before 40.0.2214.111 on Windows, OS X, and Linux and before 40.0.2214.109 on Android, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers improper handling of a shadow-root anchor.Enginsight
Vendor | Product | Version |
---|---|---|
chrome | 𝑥 < 40.0.2214.111 | |
canonical | ubuntu_linux | 14.04 |
canonical | ubuntu_linux | 14.10 |
redhat | enterprise_linux_desktop | 6.0 |
redhat | enterprise_linux_eus | 6.6 |
redhat | enterprise_linux_server | 6.0 |
redhat | enterprise_linux_server_aus | 6.6 |
redhat | enterprise_linux_workstation | 6.0 |
opensuse | opensuse | 13.1 |
opensuse | opensuse | 13.2 |
𝑥
= Vulnerable software versions

Ubuntu Releases
Ubuntu Product | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
chromium-browser |
| ||||||||||||
oxide-qt |
|
Common Weakness Enumeration
References