UBUNTU-CVE-2015-1276

Advisory lineage Upstream: 1 Downstream: 1
Upstream
CVE-2015-1276
Downstream
USN-2677-1
Published: 22 Jul 2015, 00:00
Last modified:04 Feb 2026, 03:00

Vulnerability Summary

Overall Risk (default)
high
70/100
CVSS Score
9.8 CRITICAL
3.0 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

22 Jul 2015, 00:00
Published
Vulnerability first disclosed
04 Feb 2026, 03:00
Last Modified
Vulnerability information updated

Description

Use-after-free vulnerability in content/browser/indexed_db/indexed_db_backing_store.cc in the IndexedDB implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an abort action before a certain write operation.

CVSS Metrics

  • v3.0CRITICALScore: 9.8CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Systems

  • ubuntuchromium-browser

    < 44.0.2403.89-0ubuntu0.14.04.1.1095

  • ubuntuoxide-qt

    < 1.8.4-0ubuntu0.14.04.2

References (4)