Your submission was sent successfully! Close

CVE-2013-2908

Published: 02 October 2013

Google Chrome before 30.0.1599.66 uses incorrect function calls to determine the values of NavigationEntry objects, which allows remote attackers to spoof the address bar via vectors involving a response with a 204 (aka No Content) status code.

Priority

Medium

Status

Package Release Status
chromium-browser
Launchpad, Ubuntu, Debian
Upstream
Released (30.0.1599.66)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)