CVE-2013-6649
Vulnerability Summary
Timeline
Description
Use-after-free vulnerability in the RenderSVGImage::paint function in core/rendering/svg/RenderSVGImage.cpp in Blink, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a zero-size SVG image.
CVSS Metrics
- v2.0•HIGH•Score: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Trends
Current EPSS score: 0.93%• Percentile: 76%
Techniques & Countermeasures
- CWE-399•Resource Management Errors
Weaknesses in this category are related to improper management of system resources.
Affected Systems
- debian•debian_linux
7.0 | 8.0
- google•chrome
≤ 32.0.1700.101 | 32.0.1700.0 | 32.0.1700.2 | 32.0.1700.3 | 32.0.1700.4 | 32.0.1700.5 | 32.0.1700.6 | 32.0.1700.7 | 32.0.1700.8 | 32.0.1700.9 | 32.0.1700.10 | 32.0.1700.11 | 32.0.1700.12 | 32.0.1700.13 | 32.0.1700.14 | 32.0.1700.15 | 32.0.1700.16 | 32.0.1700.17 | 32.0.1700.18 | 32.0.1700.19 | 32.0.1700.21 | 32.0.1700.22 | 32.0.1700.23 | 32.0.1700.24 | 32.0.1700.26 | 32.0.1700.27 | 32.0.1700.28 | 32.0.1700.29 | 32.0.1700.30 | 32.0.1700.31 | 32.0.1700.32 | 32.0.1700.33 | 32.0.1700.34 | 32.0.1700.35 | 32.0.1700.38 | 32.0.1700.39 | 32.0.1700.41 | 32.0.1700.50 | 32.0.1700.51 | 32.0.1700.52 | 32.0.1700.53 | 32.0.1700.54 | 32.0.1700.55 | 32.0.1700.56 | 32.0.1700.57 | 32.0.1700.58 | 32.0.1700.59 | 32.0.1700.62 | 32.0.1700.63 | 32.0.1700.64 | 32.0.1700.65 | 32.0.1700.66 | 32.0.1700.67 | 32.0.1700.68 | 32.0.1700.69 | 32.0.1700.70 | 32.0.1700.71 | 32.0.1700.72 | 32.0.1700.74 | 32.0.1700.75 | 32.0.1700.76 | 32.0.1700.77 | 32.0.1700.94 | 32.0.1700.95 | 32.0.1700.96 | 32.0.1700.97 | 32.0.1700.98 | 32.0.1700.99 | 32.0.1700.100
- opensuse•opensuse
12.3 | 13.1