CVE-2012-2864

Google Chrome OS - Remote Code Execution via Mesa Array Overflow

Title source: llm
STIX 2.1

Description

Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."

References (6)

Core 6
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1623-1
Third Party Advisory x_refsource_confirm
https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0264
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/51215
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2013:103

Scores

EPSS 0.0464
EPSS Percentile 90.6%

Details

CWE
CWE-119
Status published
Products (33)
google/chrome_os 21.0.1180.0
google/chrome_os 21.0.1180.1
google/chrome_os 21.0.1180.2
google/chrome_os 21.0.1180.3
google/chrome_os 21.0.1180.4
google/chrome_os 21.0.1180.5
google/chrome_os 21.0.1180.6
google/chrome_os 21.0.1180.7
google/chrome_os 21.0.1180.8
google/chrome_os 21.0.1180.9
... and 23 more
Published Aug 22, 2012
Tracked Since Feb 18, 2026