CVE-2013-6622

Description

Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocument function in core/html/HTMLMediaElement.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving the movement of a media element between documents.

CVSS Metrics

• v2.0•MEDIUM•Score: 6.8AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 1.61%• Percentile: 82%

Techniques & Countermeasures

• CWE-399•Resource Management Errors

  Weaknesses in this category are related to improper management of system resources.

Affected Systems

• google•chrome

  ≤ 31.0.1650.47 | 31.0.1650.0 | 31.0.1650.2 | 31.0.1650.3 | 31.0.1650.4 | 31.0.1650.5 | 31.0.1650.6 | 31.0.1650.7 | 31.0.1650.8 | 31.0.1650.9 | 31.0.1650.10 | 31.0.1650.11 | 31.0.1650.12 | 31.0.1650.13 | 31.0.1650.14 | 31.0.1650.15 | 31.0.1650.16 | 31.0.1650.17 | 31.0.1650.18 | 31.0.1650.19 | 31.0.1650.20 | 31.0.1650.22 | 31.0.1650.23 | 31.0.1650.25 | 31.0.1650.26 | 31.0.1650.27 | 31.0.1650.28 | 31.0.1650.29 | 31.0.1650.30 | 31.0.1650.31 | 31.0.1650.32 | 31.0.1650.33 | 31.0.1650.34 | 31.0.1650.35 | 31.0.1650.36 | 31.0.1650.37 | 31.0.1650.38 | 31.0.1650.39 | 31.0.1650.41 | 31.0.1650.42 | 31.0.1650.43 | 31.0.1650.44 | 31.0.1650.45 | 31.0.1650.46

References (9)

• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18335
• http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
• https://src.chromium.org/viewvc/blink?revision=159031&view=revision
• http://googlechromereleases.blogspot.com/2013/11/stable-channel-update.html
• http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html
• http://www.debian.org/security/2013/dsa-2799
• http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html
• http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html
• https://code.google.com/p/chromium/issues/detail?id=272786