CVE-2013-2927

Blink <30.0.1599.101 - Use After Free

Title source: llm
STIX 2.1

Description

Use-after-free vulnerability in the HTMLFormElement::prepareForSubmission function in core/html/HTMLFormElement.cpp in Blink, as used in Google Chrome before 30.0.1599.101, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to submission for FORM elements.

References (14)

Core 14
Core References
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT6537
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2013/dsa-2785
Third Party Advisory vendor-advisory x_refsource_apple
http://archives.neohapsis.com/archives/bugtraq/2014-06/0175.html
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT6254
Third Party Advisory vendor-advisory x_refsource_apple
http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2013-11/msg00077.html
Third Party Advisory vendor-advisory x_refsource_apple
http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2013/10/stable-channel-update_15.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19155

Scores

EPSS 0.0165
EPSS Percentile 73.8%

Details

CWE
CWE-399
Status published
Products (50)
debian/debian_linux 7.0
debian/debian_linux 8.0
google/chrome 30.0.1599.0
google/chrome 30.0.1599.1
google/chrome 30.0.1599.2
google/chrome 30.0.1599.4
google/chrome 30.0.1599.5
google/chrome 30.0.1599.6
google/chrome 30.0.1599.7
google/chrome 30.0.1599.8
... and 40 more
Published Oct 16, 2013
Tracked Since Feb 18, 2026