Your submission was sent successfully! Close

CVE-2014-1703

Published: 16 March 2014

Use-after-free vulnerability in the WebSocketDispatcherHost::SendOrDrop function in content/browser/renderer_host/websocket_dispatcher_host.cc in the Web Sockets implementation in Google Chrome before 33.0.1750.149 might allow remote attackers to bypass the sandbox protection mechanism by leveraging an incorrect deletion in a certain failure case.

Priority

Medium

Status

Package Release Status
chromium-browser
Launchpad, Ubuntu, Debian
Upstream
Released (33.0.1750.149)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (33.0.1750.152-0ubuntu1~pkg995.1)
oxide-qt
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist