7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
83.2%
Use-after-free vulnerability in the GPU process implementation in Google
Chrome before 44.0.2403.89 allows remote attackers to cause a denial of
service or possibly have unspecified other impact by leveraging the
continued availability of a GPUChannelHost data structure during Blink
shutdown, related to
content/browser/gpu/browser_gpu_channel_host_factory.cc and
content/renderer/render_thread_impl.cc.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 14.04 | noarch | chromium-browser | < 44.0.2403.89-0ubuntu0.14.04.1.1095 | UNKNOWN |
ubuntu | 15.04 | noarch | chromium-browser | < 44.0.2403.89-0ubuntu0.15.04.1.1177 | UNKNOWN |
ubuntu | 15.10 | noarch | chromium-browser | < 44.0.2403.89-0ubuntu1.1195 | UNKNOWN |
ubuntu | 14.04 | noarch | oxide-qt | < 1.8.4-0ubuntu0.14.04.1 | UNKNOWN |
ubuntu | 15.04 | noarch | oxide-qt | < 1.8.4-0ubuntu0.15.04.1 | UNKNOWN |
ubuntu | 15.10 | noarch | oxide-qt | < 1.8.4-0ubuntu1 | UNKNOWN |