CVE-2015-1276

2015-07-2200:00:00

ubuntu.com

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.011 Low

EPSS

Percentile

84.3%

JSON

Use-after-free vulnerability in
content/browser/indexed_db/indexed_db_backing_store.cc in the IndexedDB
implementation in Google Chrome before 44.0.2403.89 allows remote attackers
to cause a denial of service or possibly have unspecified other impact by
leveraging an abort action before a certain write operation.

Bugs

<https://code.google.com/p/chromium/issues/detail?id=472614>

OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchchromium-browser< 44.0.2403.89-0ubuntu0.14.04.1.1095UNKNOWN
ubuntu15.04noarchchromium-browser< 44.0.2403.89-0ubuntu0.15.04.1.1177UNKNOWN
ubuntu15.10noarchchromium-browser< 44.0.2403.89-0ubuntu1.1195UNKNOWN
ubuntu14.04noarchoxide-qt< 1.8.4-0ubuntu0.14.04.1UNKNOWN
ubuntu15.04noarchoxide-qt< 1.8.4-0ubuntu0.15.04.1UNKNOWN
ubuntu15.10noarchoxide-qt< 1.8.4-0ubuntu1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	14.04	noarch	chromium-browser	< 44.0.2403.89-0ubuntu0.14.04.1.1095	UNKNOWN
ubuntu	15.04	noarch	chromium-browser	< 44.0.2403.89-0ubuntu0.15.04.1.1177	UNKNOWN
ubuntu	15.10	noarch	chromium-browser	< 44.0.2403.89-0ubuntu1.1195	UNKNOWN
ubuntu	14.04	noarch	oxide-qt	< 1.8.4-0ubuntu0.14.04.1	UNKNOWN
ubuntu	15.04	noarch	oxide-qt	< 1.8.4-0ubuntu0.15.04.1	UNKNOWN
ubuntu	15.10	noarch	oxide-qt	< 1.8.4-0ubuntu1	UNKNOWN