CVE-2013-2915

Publication date 2 October 2013

Last updated 24 July 2024


Ubuntu priority

Google Chrome before 30.0.1599.66 preserves pending NavigationEntry objects in certain invalid circumstances, which allows remote attackers to spoof the address bar via a URL with a malformed scheme, as demonstrated by a nonexistent:12121 URL.

Status

Package Ubuntu Release Status
chromium-browser 13.10 saucy
Fixed 30.0.1599.114-0ubuntu0.13.10.2
13.04 raring
Fixed 30.0.1599.114-0ubuntu0.13.04.2
12.10 quantal
Fixed 30.0.1599.114-0ubuntu0.12.10.2
12.04 LTS precise
Fixed 30.0.1599.114-0ubuntu0.12.04.3
10.04 LTS lucid Ignored end of life