certfr_avis - certa-2013-avi-654

CVE-2013-6640 (GCVE-0-2013-6640)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that sets a variable to the value of an array element with a crafted index.

References

URL

Tags

	http://code.google.com/p/v8/source/detail?r=17801	x_refsource_CONFIRM
	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/56216	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK
	https://code.google.com/p/chromium/issues/detail?id=319860	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.253Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://code.google.com/p/v8/source/detail?r=17801"
          },
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "name": "openSUSE-SU-2013:1962",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
          },
          {
            "name": "openSUSE-SU-2014:0092",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
          },
          {
            "name": "openSUSE-SU-2013:1960",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "name": "56216",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56216"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319860"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that sets a variable to the value of an array element with a crafted index."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-03-04T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://code.google.com/p/v8/source/detail?r=17801"
        },
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "name": "openSUSE-SU-2013:1962",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
        },
        {
          "name": "openSUSE-SU-2014:0092",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
        },
        {
          "name": "openSUSE-SU-2013:1960",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "name": "56216",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56216"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319860"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6640",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that sets a variable to the value of an array element with a crafted index."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://code.google.com/p/v8/source/detail?r=17801",
              "refsource": "CONFIRM",
              "url": "http://code.google.com/p/v8/source/detail?r=17801"
            },
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "openSUSE-SU-2013:1962",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
            },
            {
              "name": "openSUSE-SU-2014:0092",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
            },
            {
              "name": "openSUSE-SU-2013:1960",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "56216",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56216"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319860",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319860"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6640",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.253Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6638 (GCVE-0-2013-6638)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a large typed array, related to the (1) Runtime_TypedArrayInitialize and (2) Runtime_TypedArrayInitializeFromArrayLike functions.

References

URL

Tags

	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html	vendor-advisory, x_refsource_SUSE
	http://code.google.com/p/v8/source/detail?r=17800	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html	vendor-advisory, x_refsource_SUSE
	http://www.mail-archive.com/v8-dev%40googlegroups.com/msg79646.html	mailing-list, x_refsource_MLIST
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/56216	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK
	https://code.google.com/p/chromium/issues/detail?id=319722	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.469Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "name": "openSUSE-SU-2013:1962",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://code.google.com/p/v8/source/detail?r=17800"
          },
          {
            "name": "openSUSE-SU-2014:0092",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
          },
          {
            "name": "[v8-dev] 20131115 Limit the size for typed arrays to MaxSmi. (issue 73943004)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.mail-archive.com/v8-dev%40googlegroups.com/msg79646.html"
          },
          {
            "name": "openSUSE-SU-2013:1960",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "name": "56216",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56216"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319722"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a large typed array, related to the (1) Runtime_TypedArrayInitialize and (2) Runtime_TypedArrayInitializeFromArrayLike functions."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-03-04T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "name": "openSUSE-SU-2013:1962",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://code.google.com/p/v8/source/detail?r=17800"
        },
        {
          "name": "openSUSE-SU-2014:0092",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
        },
        {
          "name": "[v8-dev] 20131115 Limit the size for typed arrays to MaxSmi. (issue 73943004)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.mail-archive.com/v8-dev%40googlegroups.com/msg79646.html"
        },
        {
          "name": "openSUSE-SU-2013:1960",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "name": "56216",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56216"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319722"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6638",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a large typed array, related to the (1) Runtime_TypedArrayInitialize and (2) Runtime_TypedArrayInitializeFromArrayLike functions."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "openSUSE-SU-2013:1962",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
            },
            {
              "name": "http://code.google.com/p/v8/source/detail?r=17800",
              "refsource": "CONFIRM",
              "url": "http://code.google.com/p/v8/source/detail?r=17800"
            },
            {
              "name": "openSUSE-SU-2014:0092",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
            },
            {
              "name": "[v8-dev] 20131115 Limit the size for typed arrays to MaxSmi. (issue 73943004)",
              "refsource": "MLIST",
              "url": "http://www.mail-archive.com/v8-dev@googlegroups.com/msg79646.html"
            },
            {
              "name": "openSUSE-SU-2013:1960",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "56216",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56216"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319722",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319722"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6638",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.469Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6635 (GCVE-0-2013-6635)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers removal of a node during processing of the DOM tree, related to CompositeEditCommand.cpp and ReplaceSelectionCommand.cpp.

References

URL

Tags

	http://support.apple.com/kb/HT6145	x_refsource_CONFIRM
	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	http://support.apple.com/kb/HT6163	x_refsource_CONFIRM
	https://support.apple.com/kb/HT6537	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	https://src.chromium.org/viewvc/blink?revision=161598&view=revision	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=314469	x_refsource_CONFIRM
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	http://support.apple.com/kb/HT6162	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.256Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.apple.com/kb/HT6145"
          },
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.apple.com/kb/HT6163"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT6537"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://src.chromium.org/viewvc/blink?revision=161598\u0026view=revision"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=314469"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.apple.com/kb/HT6162"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers removal of a node during processing of the DOM tree, related to CompositeEditCommand.cpp and ReplaceSelectionCommand.cpp."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-12-06T18:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.apple.com/kb/HT6145"
        },
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.apple.com/kb/HT6163"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/kb/HT6537"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://src.chromium.org/viewvc/blink?revision=161598\u0026view=revision"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=314469"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.apple.com/kb/HT6162"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6635",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers removal of a node during processing of the DOM tree, related to CompositeEditCommand.cpp and ReplaceSelectionCommand.cpp."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://support.apple.com/kb/HT6145",
              "refsource": "CONFIRM",
              "url": "http://support.apple.com/kb/HT6145"
            },
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "http://support.apple.com/kb/HT6163",
              "refsource": "CONFIRM",
              "url": "http://support.apple.com/kb/HT6163"
            },
            {
              "name": "https://support.apple.com/kb/HT6537",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/kb/HT6537"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "https://src.chromium.org/viewvc/blink?revision=161598\u0026view=revision",
              "refsource": "CONFIRM",
              "url": "https://src.chromium.org/viewvc/blink?revision=161598\u0026view=revision"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=314469",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=314469"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "http://support.apple.com/kb/HT6162",
              "refsource": "CONFIRM",
              "url": "http://support.apple.com/kb/HT6162"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6635",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.256Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6639 (GCVE-0-2013-6639)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index.

References

URL

Tags

	http://code.google.com/p/v8/source/detail?r=17801	x_refsource_CONFIRM
	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=319835	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/56216	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.202Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://code.google.com/p/v8/source/detail?r=17801"
          },
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "name": "openSUSE-SU-2013:1962",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
          },
          {
            "name": "openSUSE-SU-2014:0092",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
          },
          {
            "name": "openSUSE-SU-2013:1960",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319835"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "name": "56216",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56216"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-03-04T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://code.google.com/p/v8/source/detail?r=17801"
        },
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "name": "openSUSE-SU-2013:1962",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
        },
        {
          "name": "openSUSE-SU-2014:0092",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
        },
        {
          "name": "openSUSE-SU-2013:1960",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319835"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "name": "56216",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56216"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6639",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://code.google.com/p/v8/source/detail?r=17801",
              "refsource": "CONFIRM",
              "url": "http://code.google.com/p/v8/source/detail?r=17801"
            },
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "openSUSE-SU-2013:1962",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00124.html"
            },
            {
              "name": "openSUSE-SU-2014:0092",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00063.html"
            },
            {
              "name": "openSUSE-SU-2013:1960",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00122.html"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319835",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319835"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "56216",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56216"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6639",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.202Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6636 (GCVE-0-2013-6636)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote attackers to spoof the address bar via vectors involving the document.write method.

References

URL

Tags

	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	https://code.google.com/p/chromium/issues/detail?id=322959	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	https://src.chromium.org/viewvc/blink?revision=162673&view=revision	x_refsource_CONFIRM
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.396Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=322959"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://src.chromium.org/viewvc/blink?revision=162673\u0026view=revision"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote attackers to spoof the address bar via vectors involving the document.write method."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-03-04T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=322959"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://src.chromium.org/viewvc/blink?revision=162673\u0026view=revision"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6636",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote attackers to spoof the address bar via vectors involving the document.write method."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=322959",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=322959"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "https://src.chromium.org/viewvc/blink?revision=162673\u0026view=revision",
              "refsource": "CONFIRM",
              "url": "https://src.chromium.org/viewvc/blink?revision=162673\u0026view=revision"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6636",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.396Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6634 (GCVE-0-2013-6634)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63 uses an incorrect URL during realm validation, which allows remote attackers to conduct session fixation attacks and hijack web sessions by triggering improper sync after a 302 (aka Found) HTTP status code.

References

URL

Tags

	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	https://code.google.com/p/chromium/issues/detail?id=307159	x_refsource_CONFIRM
	https://src.chromium.org/viewvc/chrome?revision=236563&view=revision	x_refsource_CONFIRM
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.394Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=307159"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://src.chromium.org/viewvc/chrome?revision=236563\u0026view=revision"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63 uses an incorrect URL during realm validation, which allows remote attackers to conduct session fixation attacks and hijack web sessions by triggering improper sync after a 302 (aka Found) HTTP status code."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-03-04T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=307159"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://src.chromium.org/viewvc/chrome?revision=236563\u0026view=revision"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6634",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63 uses an incorrect URL during realm validation, which allows remote attackers to conduct session fixation attacks and hijack web sessions by triggering improper sync after a 302 (aka Found) HTTP status code."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=307159",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=307159"
            },
            {
              "name": "https://src.chromium.org/viewvc/chrome?revision=236563\u0026view=revision",
              "refsource": "CONFIRM",
              "url": "https://src.chromium.org/viewvc/chrome?revision=236563\u0026view=revision"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6634",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.394Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6637 (GCVE-0-2013-6637)

Vulnerability from cvelistv5

Published

2013-12-07 00:00

Modified

2024-08-06 17:46

Severity ?

CWE

n/a

Summary

Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

References

URL

Tags

	https://code.google.com/p/chromium/issues/detail?id=300892	x_refsource_CONFIRM
	http://secunia.com/advisories/56217	third-party-advisory, x_refsource_SECUNIA
	https://code.google.com/p/chromium/issues/detail?id=319914	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=319835	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=305904	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html	vendor-advisory, x_refsource_SUSE
	https://code.google.com/p/chromium/issues/detail?id=320313	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=325501	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=313435	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=322554	x_refsource_CONFIRM
	http://www.debian.org/security/2013/dsa-2811	vendor-advisory, x_refsource_DEBIAN
	https://code.google.com/p/chromium/issues/detail?id=308988	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://www.securitytracker.com/id/1029442	vdb-entry, x_refsource_SECTRACK
	https://code.google.com/p/chromium/issues/detail?id=317999	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=319722	x_refsource_CONFIRM
	https://code.google.com/p/chromium/issues/detail?id=319860	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:46:22.183Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=300892"
          },
          {
            "name": "56217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/56217"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319914"
          },
          {
            "name": "openSUSE-SU-2014:0065",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319835"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=305904"
          },
          {
            "name": "openSUSE-SU-2013:1933",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=320313"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=325501"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=313435"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=322554"
          },
          {
            "name": "DSA-2811",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2013/dsa-2811"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=308988"
          },
          {
            "name": "openSUSE-SU-2013:1927",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
          },
          {
            "name": "1029442",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1029442"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=317999"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319722"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=319860"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-03-04T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=300892"
        },
        {
          "name": "56217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/56217"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319914"
        },
        {
          "name": "openSUSE-SU-2014:0065",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319835"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=305904"
        },
        {
          "name": "openSUSE-SU-2013:1933",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=320313"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=325501"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=313435"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=322554"
        },
        {
          "name": "DSA-2811",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2013/dsa-2811"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=308988"
        },
        {
          "name": "openSUSE-SU-2013:1927",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
        },
        {
          "name": "1029442",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1029442"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=317999"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319722"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=319860"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6637",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=300892",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=300892"
            },
            {
              "name": "56217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/56217"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319914",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319914"
            },
            {
              "name": "openSUSE-SU-2014:0065",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319835",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319835"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=305904",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=305904"
            },
            {
              "name": "openSUSE-SU-2013:1933",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=320313",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=320313"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=325501",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=325501"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=313435",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=313435"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=322554",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=322554"
            },
            {
              "name": "DSA-2811",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2013/dsa-2811"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=308988",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=308988"
            },
            {
              "name": "openSUSE-SU-2013:1927",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html"
            },
            {
              "name": "1029442",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1029442"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=317999",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=317999"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319722",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319722"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=319860",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=319860"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6637",
    "datePublished": "2013-12-07T00:00:00",
    "dateReserved": "2013-11-05T00:00:00",
    "dateUpdated": "2024-08-06T17:46:22.183Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2013-AVI-654

Vulnerability from certfr_avis

Solution

Tags

Sightings

Nomenclature

Action not permitted

CERTA-2013-AVI-654

Vulnerability from certfr_avis

Solution

CVE-2013-6640 (GCVE-0-2013-6640)

Vulnerability from cvelistv5

CVE-2013-6638 (GCVE-0-2013-6638)

Vulnerability from cvelistv5

CVE-2013-6635 (GCVE-0-2013-6635)

Vulnerability from cvelistv5

CVE-2013-6639 (GCVE-0-2013-6639)

Vulnerability from cvelistv5

CVE-2013-6636 (GCVE-0-2013-6636)

Vulnerability from cvelistv5

CVE-2013-6634 (GCVE-0-2013-6634)

Vulnerability from cvelistv5

CVE-2013-6637 (GCVE-0-2013-6637)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature