CVE-2013-0922

Publication date 28 March 2013

Last updated 24 July 2024

Description

Google Chrome before 26.0.1410.43 does not properly restrict brute-force access attempts against web sites that require HTTP Basic Authentication, which has unspecified impact and attack vectors.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
chromium-browser	13.04 raring	Fixed 28.0.1500.52-0ubuntu1.13.04.3
	12.10 quantal	Fixed 28.0.1500.52-0ubuntu1.12.10.3
	12.04 LTS precise	Fixed 28.0.1500.52-0ubuntu1.12.04.2
	11.10 oneiric	Ignored end of life
	10.04 LTS lucid	Ignored end of life
	8.04 LTS hardy	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://code.google.com/p/chromium/issues/detail?id=174129
http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html
https://www.cve.org/CVERecord?id=CVE-2013-0922

CVE-2013-0922

Description

Status

References

Other references

Access our resources on patching vulnerabilities