6.8
CVSSv2

CVE-2013-2921

Published: 02/10/2013 Updated: 19/09/2017
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Double free vulnerability in the ResourceFetcher::didLoadResource function in core/fetch/ResourceFetcher.cpp in the resource loader in Blink, as used in Google Chrome prior to 30.0.1599.66, allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering certain callback processing during the reporting of a resource entry.

Affected Products

Vendor Product Versions
GoogleChrome30.0.1599.0, 30.0.1599.1, 30.0.1599.2, 30.0.1599.4, 30.0.1599.5, 30.0.1599.6, 30.0.1599.7, 30.0.1599.8, 30.0.1599.9, 30.0.1599.10, 30.0.1599.11, 30.0.1599.12, 30.0.1599.13, 30.0.1599.14, 30.0.1599.15, 30.0.1599.16, 30.0.1599.17, 30.0.1599.18, 30.0.1599.19, 30.0.1599.20, 30.0.1599.21, 30.0.1599.22, 30.0.1599.23, 30.0.1599.24, 30.0.1599.25, 30.0.1599.26, 30.0.1599.27, 30.0.1599.28, 30.0.1599.29, 30.0.1599.30, 30.0.1599.31, 30.0.1599.32, 30.0.1599.33, 30.0.1599.34, 30.0.1599.35, 30.0.1599.36, 30.0.1599.37, 30.0.1599.38, 30.0.1599.39, 30.0.1599.40, 30.0.1599.41, 30.0.1599.42, 30.0.1599.43, 30.0.1599.44, 30.0.1599.47, 30.0.1599.48, 30.0.1599.49, 30.0.1599.50, 30.0.1599.51, 30.0.1599.52, 30.0.1599.53, 30.0.1599.56, 30.0.1599.57, 30.0.1599.58, 30.0.1599.59, 30.0.1599.60, 30.0.1599.61, 30.0.1599.64, 30.0.1599.65

Vendor Advisories

Several vulnerabilities have been discovered in the chromium web browser CVE-2013-2906 Atte Kettunen of OUSPG discovered race conditions in Web Audio CVE-2013-2907 Boris Zbarsky discovered an out-of-bounds read in windowprototype CVE-2013-2908 Chamal de Silva discovered an address bar spoofing issue CVE-2013-2909 Atte Kuttenen ...