CVE-2013-2902

Priority
Medium
Description
Use-after-free vulnerability in the XSLT ProcessingInstruction
implementation in Blink, as used in Google Chrome before 29.0.1547.57,
allows remote attackers to cause a denial of service or possibly have
unspecified other impact via vectors related to an applyXSLTransform call
involving (1) an HTML document or (2) an xsl:processing-instruction element
that is still in the process of loading.
References
Notes
sarnold> As of 2013-08-21, I don't know if libxslt needs an update or if
this is strictly in chromium-browser.
mdeslaur> fix was in chromium, marking libxslt as not-affected
Assigned-to
chad
Package
Upstream:needs-triage
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
Ubuntu 12.04 LTS (Precise Pangolin):not-affected
Ubuntu 12.10 (Quantal Quetzal):not-affected
Ubuntu 13.04 (Raring Ringtail):not-affected
Ubuntu 13.10 (Saucy Salamander):not-affected
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Package
Upstream:released (29.0.1547.57)
Ubuntu 10.04 LTS (Lucid Lynx):ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):released (30.0.1599.114-0ubuntu0.12.04.3)
Ubuntu 12.10 (Quantal Quetzal):released (30.0.1599.114-0ubuntu0.12.10.2)
Ubuntu 13.04 (Raring Ringtail):released (30.0.1599.114-0ubuntu0.13.04.2)
Ubuntu 13.10 (Saucy Salamander):not-affected (29.0.1547.65-0ubuntu2)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (29.0.1547.65-0ubuntu2)
More Information

Valid XHTML 1.0 Strict

Updated: 2013-11-15 16:14:44 UTC (commit 7462)