1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
|
PublicDateAtUSN: 2013-10-02
Candidate: CVE-2013-2924
PublicDate: 2013-10-02
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2924
http://googlechromereleases.blogspot.com/2013/10/stable-channel-update.html
http://www.ubuntu.com/usn/usn-1989-1
Description:
Use-after-free vulnerability in International Components for Unicode (ICU),
as used in Google Chrome before 30.0.1599.66 and other products, allows
remote attackers to cause a denial of service or possibly have unspecified
other impact via unknown vectors.
Ubuntu-Description:
Notes:
Bugs:
http://bugs.icu-project.org/trac/ticket/10318
https://code.google.com/p/chromium/issues/detail?id=275803
Priority: medium
Discovered-by:
Assigned-to: chad
Patches_chromium-browser:
upstream: https://src.chromium.org/viewvc/chrome?revision=219151&view=revision
upstream_chromium-browser: released (30.0.1599.66)
lucid_chromium-browser: ignored (reached end-of-life)
precise_chromium-browser: released (30.0.1599.114-0ubuntu0.12.04.3)
quantal_chromium-browser: released (30.0.1599.114-0ubuntu0.12.10.2)
raring_chromium-browser: released (30.0.1599.114-0ubuntu0.13.04.2)
saucy_chromium-browser: released (30.0.1599.114-0ubuntu0.13.10.2)
devel_chromium-browser: not-affected (31.0.1650.63-0ubuntu1~20131204.1)
Patches_icu:
upstream: https://ssl.icu-project.org/trac/changeset/34076
upstream_icu: needs-triage
lucid_icu: ignored (reached end-of-life)
precise_icu: released (4.8.1.1-3ubuntu0.1)
quantal_icu: released (4.8.1.1-8ubuntu0.1)
raring_icu: released (4.8.1.1-12ubuntu0.1)
saucy_icu: released (4.8.1.1-12ubuntu2)
devel_icu: released (4.8.1.1-12ubuntu2)
|