CVE-2015-1321

Oxide <1.6.5 - Use After Free

Title source: llm
STIX 2.1

Description

Use-after-free vulnerability in the file picker implementation in Oxide before 1.6.5 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted webpage.

References (1)

Core 1
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2570-1

Scores

EPSS 0.0199
EPSS Percentile 78.4%

Details

Status published
Products (4)
canonical/ubuntu_linux 14.04
canonical/ubuntu_linux 14.10
canonical/ubuntu_linux 15.1
oxide_project/oxide < 1.6.4
Published Apr 29, 2015
Tracked Since Feb 18, 2026