Description
Use-after-free vulnerability in oxide::qt::URLRequestDelegatedJob in oxide-qt in Ubuntu 15.04 and 14.04 LTS might allow remote attackers to execute arbitrary code.
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1329.html
Patch, Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2677-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76174
Scores
CVSS v3
8.8
EPSS
0.0459
EPSS Percentile
90.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (2)
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
15.04
Published
Sep 20, 2017
Tracked Since
Feb 18, 2026