CVE-2014-1703
Published: 16 March 2014
Use-after-free vulnerability in the WebSocketDispatcherHost::SendOrDrop function in content/browser/renderer_host/websocket_dispatcher_host.cc in the Web Sockets implementation in Google Chrome before 33.0.1750.149 might allow remote attackers to bypass the sandbox protection mechanism by leveraging an incorrect deletion in a certain failure case.
Priority
Status
Package | Release | Status |
---|---|---|
chromium-browser Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(33.0.1750.152-0ubuntu0.12.04.1~pkg879.1)
|
|
quantal |
Released
(33.0.1750.152-0ubuntu0.12.10.1~pkg895.1)
|
|
saucy |
Released
(33.0.1750.152-0ubuntu0.13.10.1~pkg984.1)
|
|
upstream |
Released
(33.0.1750.149)
|
|
oxide-qt Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
precise |
Does not exist
|
|
quantal |
Does not exist
|
|
saucy |
Does not exist
|
|
upstream |
Needs triage
|