CVE-2015-1221

Publication date 8 March 2015

Last updated 24 July 2024


Ubuntu priority

Use-after-free vulnerability in Blink, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect ordering of operations in the Web SQL Database thread relative to Blink's main thread, related to the shutdown function in web/WebKit.cpp.

Status

Package Ubuntu Release Status
chromium-browser 15.10 wily
Fixed 41.0.2272.76-0ubuntu1.1134
15.04 vivid
Fixed 41.0.2272.76-0ubuntu1.1134
14.10 utopic
Fixed 41.0.2272.76-0ubuntu0.14.10.1.1118
14.04 LTS trusty
Fixed 41.0.2272.76-0ubuntu0.14.04.1.1076
12.04 LTS precise Ignored
10.04 LTS lucid Ignored end of life
oxide-qt 15.10 wily
Fixed 1.5.5-0ubuntu1
15.04 vivid
Fixed 1.5.5-0ubuntu1
14.10 utopic
Fixed 1.5.5-0ubuntu0.14.10.2
14.04 LTS trusty
Fixed 1.5.5-0ubuntu0.14.04.3
12.04 LTS precise Not in release
10.04 LTS lucid Not in release