Lucene search

ChromeCVE-2015-1228

HistoryMar 09, 2015 - 12:59 a.m.

CVE-2015-1228

2015-03-0900:59:21

CWE-399

Chrome

web.nvd.nist.gov

cve-2015-1228

rendercounter

updatecounter

rendercounter.cpp

blink

google chrome

denial of service

application crash

css token sequence

nvd

security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

High

EPSS

0.019

Percentile

88.8%

JSON

The RenderCounter::updateCounter function in core/rendering/RenderCounter.cpp in Blink, as used in Google Chrome before 41.0.2272.76, does not force a relayout operation and consequently does not initialize memory for a data structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted Cascading Style Sheets (CSS) token sequence.

Affected configurations

Nvd

Node

canonicalubuntu_linuxMatch14.04lts

canonicalubuntu_linuxMatch14.10

Node

googlechromeRange≤40.0.2214.115

Node

redhatenterprise_linux_desktop_supplementaryMatch6.0

redhatenterprise_linux_serverMatch6.0

redhatenterprise_linux_server_supplementary_eusMatch6.6.z

redhatenterprise_linux_workstation_supplementaryMatch6.0

VendorProductVersionCPE
canonicalubuntu_linux14.04cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
canonicalubuntu_linux14.10cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
redhatenterprise_linux_desktop_supplementary6.0cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:*:*:*:*:*:*:*
redhatenterprise_linux_server6.0cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
redhatenterprise_linux_server_supplementary_eus6.6.zcpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.6.z:*:*:*:*:*:*:*
redhatenterprise_linux_workstation_supplementary6.0cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
canonical	ubuntu_linux	14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
canonical	ubuntu_linux	14.10	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
google	chrome	*	cpe:2.3:a:google:chrome::::::::
redhat	enterprise_linux_desktop_supplementary	6.0	cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:::::::*
redhat	enterprise_linux_server	6.0	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
redhat	enterprise_linux_server_supplementary_eus	6.6.z	cpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.6.z:::::::*
redhat	enterprise_linux_workstation_supplementary	6.0	cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:::::::*