Upstream information
Description
The ReverbConvolverStage::ReverbConvolverStage function in core/platform/audio/ReverbConvolverStage.cpp in the Web Audio implementation in Blink, as used in Google Chrome before 30.0.1599.66, allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the impulseResponse array.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
| National Vulnerability Database | |
|---|---|
| Base Score | 5 |
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Access Vector | Network |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Partial |
SUSE Security Advisories:
- openSUSE-SU-2013:1556-1, published Wed, 16 Oct 2013 18:04:12 +0200 (CEST)
- openSUSE-SU-2013:1861-1, published Thu, 12 Dec 2013 18:05:02 +0100 (CET)
- openSUSE-SU-2014:0065-1, published Wed, 15 Jan 2014 11:04:14 +0100 (CET)
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| openSUSE Leap 15.0 |
| Patchnames: openSUSE Leap 15.0 GA chromium-66.0.3359.170-lp150.1.1 |
| openSUSE Tumbleweed |
| Patchnames: openSUSE Tumbleweed GA chromedriver-55.0.2883.75-3.1 |
SUSE Timeline for this CVE
CVE page created: Wed Oct 2 15:15:17 2013CVE page last modified: Fri Oct 7 12:46:31 2022
Run SAP
SUSE for Public Cloud
Security
