CVE-2013-6663
high
CVSS v3
—
CVSS v2
7.5
VIR risk
7.5
Description
Use-after-free vulnerability in the SVGImage::setContainerSize function in core/svg/graphics/SVGImage.cpp in the SVG implementation in Blink, as used in Google Chrome before 33.0.1750.146, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the resizing of a view.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — http://googlechromereleases.blogspot.com/2014/03/stable-channel-update.html
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| chrome | {"endIncluding":"33.0.1750.144"} | | |
| chrome | 33.0.1750.0 | | |
| chrome | 33.0.1750.1 | | |
| chrome | 33.0.1750.2 | | |
| chrome | 33.0.1750.3 | | |
| chrome | 33.0.1750.4 | | |
| chrome | 33.0.1750.5 | | |
| chrome | 33.0.1750.6 | | |
| chrome | 33.0.1750.7 | | |
| chrome | 33.0.1750.8 | | |
| chrome | 33.0.1750.9 | | |
| chrome | 33.0.1750.10 | | |
| chrome | 33.0.1750.11 | | |
| chrome | 33.0.1750.12 | | |
| chrome | 33.0.1750.13 | | |
| chrome | 33.0.1750.14 | | |
| chrome | 33.0.1750.15 | | |
| chrome | 33.0.1750.16 | | |
| chrome | 33.0.1750.18 | | |
| chrome | 33.0.1750.19 | | |
| chrome | 33.0.1750.20 | | |
| chrome | 33.0.1750.21 | | |
| chrome | 33.0.1750.22 | | |
| chrome | 33.0.1750.23 | | |
| chrome | 33.0.1750.24 | | |
| chrome | 33.0.1750.25 | | |
| chrome | 33.0.1750.26 | | |
| chrome | 33.0.1750.27 | | |
| chrome | 33.0.1750.28 | | |
| chrome | 33.0.1750.29 | | |
| chrome | 33.0.1750.30 | | |
| chrome | 33.0.1750.31 | | |
| chrome | 33.0.1750.34 | | |
| chrome | 33.0.1750.35 | | |
| chrome | 33.0.1750.36 | | |
| chrome | 33.0.1750.37 | | |
| chrome | 33.0.1750.38 | | |
| chrome | 33.0.1750.39 | | |
| chrome | 33.0.1750.40 | | |
| chrome | 33.0.1750.41 | | |
| chrome | 33.0.1750.42 | | |
| chrome | 33.0.1750.43 | | |
| chrome | 33.0.1750.44 | | |
| chrome | 33.0.1750.45 | | |
| chrome | 33.0.1750.46 | | |
| chrome | 33.0.1750.47 | | |
| chrome | 33.0.1750.48 | | |
| chrome | 33.0.1750.49 | | |
| chrome | 33.0.1750.50 | | |
| chrome | 33.0.1750.51 | | |
| chrome | 33.0.1750.52 | | |
| chrome | 33.0.1750.53 | | |
| chrome | 33.0.1750.54 | | |
| chrome | 33.0.1750.55 | | |
| chrome | 33.0.1750.56 | | |
| chrome | 33.0.1750.57 | | |
| chrome | 33.0.1750.58 | | |
| chrome | 33.0.1750.59 | | |
| chrome | 33.0.1750.60 | | |
| chrome | 33.0.1750.61 | | |
| chrome | 33.0.1750.62 | | |
| chrome | 33.0.1750.63 | | |
| chrome | 33.0.1750.64 | | |
| chrome | 33.0.1750.65 | | |
| chrome | 33.0.1750.66 | | |
| chrome | 33.0.1750.67 | | |
| chrome | 33.0.1750.68 | | |
| chrome | 33.0.1750.69 | | |
| chrome | 33.0.1750.70 | | |
| chrome | 33.0.1750.71 | | |
| chrome | 33.0.1750.73 | | |
| chrome | 33.0.1750.74 | | |
| chrome | 33.0.1750.75 | | |
| chrome | 33.0.1750.76 | | |
| chrome | 33.0.1750.77 | | |
| chrome | 33.0.1750.79 | | |
| chrome | 33.0.1750.80 | | |
| chrome | 33.0.1750.81 | | |
| chrome | 33.0.1750.82 | | |
| chrome | 33.0.1750.83 | | |
| chrome | 33.0.1750.85 | | |
| chrome | 33.0.1750.88 | | |
| chrome | 33.0.1750.89 | | |
| chrome | 33.0.1750.90 | | |
| chrome | 33.0.1750.91 | | |
| chrome | 33.0.1750.92 | | |
| chrome | 33.0.1750.93 | | |
| chrome | 33.0.1750.104 | | |
| chrome | 33.0.1750.106 | | |
| chrome | 33.0.1750.107 | | |
| chrome | 33.0.1750.108 | | |
| chrome | 33.0.1750.109 | | |
| chrome | 33.0.1750.110 | | |
| chrome | 33.0.1750.111 | | |
| chrome | 33.0.1750.112 | | |
| chrome | 33.0.1750.113 | | |
| chrome | 33.0.1750.115 | | |
| chrome | 33.0.1750.116 | | |
| chrome | 33.0.1750.117 | | |
| chrome | 33.0.1750.124 | | |
| chrome | 33.0.1750.125 | | |
| chrome | 33.0.1750.126 | | |
| chrome | 33.0.1750.132 | | |
| chrome | 33.0.1750.133 | | |
| chrome | 33.0.1750.135 | | |
| chrome | 33.0.1750.136 | |
References
- http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
- http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html
- http://googlechromereleases.blogspot.com/2014/03/stable-channel-update.html
- http://secunia.com/advisories/61306
- http://secunia.com/advisories/61318
- http://support.apple.com/kb/HT6440
- http://support.apple.com/kb/HT6441
- http://support.apple.com/kb/HT6442
- http://www.debian.org/security/2014/dsa-2883
- http://www.securityfocus.com/bid/65930
- https://code.google.com/p/chromium/issues/detail?id=344492
- https://src.chromium.org/viewvc/blink?revision=168152&view=revision
- https://support.apple.com/kb/HT6537
- http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
- http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html
- http://googlechromereleases.blogspot.com/2014/03/stable-channel-update.html
- http://secunia.com/advisories/61306
- http://secunia.com/advisories/61318
- http://support.apple.com/kb/HT6440
- http://support.apple.com/kb/HT6441
- http://support.apple.com/kb/HT6442
- http://www.debian.org/security/2014/dsa-2883
- http://www.securityfocus.com/bid/65930
- https://code.google.com/p/chromium/issues/detail?id=344492
- https://src.chromium.org/viewvc/blink?revision=168152&view=revision
CWEs
CWE-399
Verify integrity in audit chain (admin only). AS-IS.