CVE-2013-6626

Publication date 13 November 2013

Last updated 24 July 2024


Ubuntu priority

The WebContentsImpl::AttachInterstitialPage function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 31.0.1650.48 does not cancel JavaScript dialogs upon generating an interstitial warning, which allows remote attackers to spoof the address bar via a crafted web site.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
chromium-browser 13.10 saucy
Fixed 31.0.1650.63-0ubuntu0.13.10.1~20131204.1
13.04 raring
Fixed 31.0.1650.63-0ubuntu0.13.04.1~20131204.1
12.10 quantal
Fixed 31.0.1650.63-0ubuntu0.12.10.1~20131204.1
12.04 LTS precise
Fixed 31.0.1650.63-0ubuntu0.12.04.1~20131204.1
10.04 LTS lucid Ignored end of life