CVE-2012-5112
critical
CVSS v3
—
CVSS v2
10.0
VIR risk
10.0
Description
Use-after-free vulnerability in the SVG implementation in WebKit, as used in Google Chrome before 22.0.1229.94, allows remote attackers to execute arbitrary code via unspecified vectors.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| macos | 6.0 | affected | |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| chrome | {"endIncluding":"22.0.1229.92"} | | |
| chrome | 22.0.1229.0 | | |
| chrome | 22.0.1229.1 | | |
| chrome | 22.0.1229.2 | | |
| chrome | 22.0.1229.3 | | |
| chrome | 22.0.1229.4 | | |
| chrome | 22.0.1229.6 | | |
| chrome | 22.0.1229.7 | | |
| chrome | 22.0.1229.8 | | |
| chrome | 22.0.1229.9 | | |
| chrome | 22.0.1229.10 | | |
| chrome | 22.0.1229.11 | | |
| chrome | 22.0.1229.12 | | |
| chrome | 22.0.1229.14 | | |
| chrome | 22.0.1229.16 | | |
| chrome | 22.0.1229.17 | | |
| chrome | 22.0.1229.18 | | |
| chrome | 22.0.1229.20 | | |
| chrome | 22.0.1229.21 | | |
| chrome | 22.0.1229.22 | | |
| chrome | 22.0.1229.23 | | |
| chrome | 22.0.1229.24 | | |
| chrome | 22.0.1229.25 | | |
| chrome | 22.0.1229.26 | | |
| chrome | 22.0.1229.27 | | |
| chrome | 22.0.1229.28 | | |
| chrome | 22.0.1229.29 | | |
| chrome | 22.0.1229.31 | | |
| chrome | 22.0.1229.32 | | |
| chrome | 22.0.1229.33 | | |
| chrome | 22.0.1229.35 | | |
| chrome | 22.0.1229.36 | | |
| chrome | 22.0.1229.37 | | |
| chrome | 22.0.1229.39 | | |
| chrome | 22.0.1229.48 | | |
| chrome | 22.0.1229.49 | | |
| chrome | 22.0.1229.50 | | |
| chrome | 22.0.1229.51 | | |
| chrome | 22.0.1229.52 | | |
| chrome | 22.0.1229.53 | | |
| chrome | 22.0.1229.54 | | |
| chrome | 22.0.1229.55 | | |
| chrome | 22.0.1229.56 | | |
| chrome | 22.0.1229.57 | | |
| chrome | 22.0.1229.58 | | |
| chrome | 22.0.1229.59 | | |
| chrome | 22.0.1229.60 | | |
| chrome | 22.0.1229.62 | | |
| chrome | 22.0.1229.63 | | |
| chrome | 22.0.1229.64 | | |
| chrome | 22.0.1229.65 | | |
| chrome | 22.0.1229.67 | | |
| chrome | 22.0.1229.76 | | |
| chrome | 22.0.1229.78 | | |
| chrome | 22.0.1229.79 | | |
| chrome | 22.0.1229.89 | | |
| chrome | 22.0.1229.91 | |
References
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0013.html
- http://blog.chromium.org/2012/10/pwnium-2-results-and-wrap-up_10.html
- http://code.google.com/p/chromium/issues/detail?id=154983
- http://code.google.com/p/chromium/issues/detail?id=154987
- http://googlechromereleases.blogspot.com/2012/10/stable-channel-update_6105.html
- http://lists.apple.com/archives/security-announce/2012/Nov/msg00000.html
- http://lists.apple.com/archives/security-announce/2012/Nov/msg00001.html
- http://osvdb.org/86149
- http://secunia.com/advisories/50954
- http://support.apple.com/kb/HT5567
- http://support.apple.com/kb/HT5568
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15523
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.html
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0013.html
- http://blog.chromium.org/2012/10/pwnium-2-results-and-wrap-up_10.html
- http://code.google.com/p/chromium/issues/detail?id=154983
- http://code.google.com/p/chromium/issues/detail?id=154987
- http://googlechromereleases.blogspot.com/2012/10/stable-channel-update_6105.html
- http://lists.apple.com/archives/security-announce/2012/Nov/msg00000.html
- http://lists.apple.com/archives/security-announce/2012/Nov/msg00001.html
- http://osvdb.org/86149
- http://secunia.com/advisories/50954
- http://support.apple.com/kb/HT5567
- http://support.apple.com/kb/HT5568
CWEs
CWE-399
Verify integrity in audit chain (admin only). AS-IS.