CVE-2010-3254 (retired)

Priority
Description
The WebSockets implementation in Google Chrome before 6.0.472.53 does not
properly handle integer values, which allows remote attackers to cause a
denial of service or possibly have unspecified other impact via unknown
vectors.
Notes
 jdstrand> webkit is a fork of khtml from kdelibs. kdelibs5 is farther from
  it, while qt4-x11 attempts to unify khtml and webkit.
 mdeslaur> webkitkde is a wrapper around qt4-x11's webkit.
 mdeslaur> looks chromium specific
 micahg> Debian has a patch (in 1.2.6-1) for this, so we'll take it too
Package
Upstream:released (6.0.472.53)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Package
Upstream:not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Package
Upstream:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Patches:
upstream:http://trac.webkit.org/changeset/65135
Package
Upstream:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (2.4.9-2ubuntu2)
More Information

Updated: 2019-09-19 15:33:02 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)