CVE-2012-2824: Use After Free
First published: Wed Jun 27 2012(Updated: )
Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG painting.
Credit: cve-coordination@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Chrome | <=20.0.1132.42 | |
| Google Chrome | =20.0.1132.0 | |
| Google Chrome | =20.0.1132.1 | |
| Google Chrome | =20.0.1132.2 | |
| Google Chrome | =20.0.1132.3 | |
| Google Chrome | =20.0.1132.4 | |
| Google Chrome | =20.0.1132.5 | |
| Google Chrome | =20.0.1132.6 | |
| Google Chrome | =20.0.1132.7 | |
| Google Chrome | =20.0.1132.8 | |
| Google Chrome | =20.0.1132.9 | |
| Google Chrome | =20.0.1132.10 | |
| Google Chrome | =20.0.1132.11 | |
| Google Chrome | =20.0.1132.12 | |
| Google Chrome | =20.0.1132.13 | |
| Google Chrome | =20.0.1132.14 | |
| Google Chrome | =20.0.1132.15 | |
| Google Chrome | =20.0.1132.16 | |
| Google Chrome | =20.0.1132.17 | |
| Google Chrome | =20.0.1132.18 | |
| Google Chrome | =20.0.1132.19 | |
| Google Chrome | =20.0.1132.20 | |
| Google Chrome | =20.0.1132.21 | |
| Google Chrome | =20.0.1132.22 | |
| Google Chrome | =20.0.1132.23 | |
| Google Chrome | =20.0.1132.24 | |
| Google Chrome | =20.0.1132.25 | |
| Google Chrome | =20.0.1132.26 | |
| Google Chrome | =20.0.1132.27 | |
| Google Chrome | =20.0.1132.28 | |
| Google Chrome | =20.0.1132.29 | |
| Google Chrome | =20.0.1132.30 | |
| Google Chrome | =20.0.1132.31 | |
| Google Chrome | =20.0.1132.32 | |
| Google Chrome | =20.0.1132.33 | |
| Google Chrome | =20.0.1132.34 | |
| Google Chrome | =20.0.1132.35 | |
| Google Chrome | =20.0.1132.36 | |
| Google Chrome | =20.0.1132.37 | |
| Google Chrome | =20.0.1132.38 | |
| Google Chrome | =20.0.1132.39 | |
| Google Chrome | =20.0.1132.40 | |
| Google Chrome | =20.0.1132.41 | |
| iPhone OS | <=6.0.2 | |
| iPhone OS | =6.0 | |
| iPhone OS | =6.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://code.google.com/p/chromium/issues/detail?id=125374
- http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html
- http://lists.apple.com/archives/security-announce/2013/Jan/msg00000.html
- http://lists.apple.com/archives/security-announce/2013/Mar/msg00003.html
- http://support.apple.com/kb/HT5642
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15666
Frequently Asked Questions
What is the severity of CVE-2012-2824?
CVE-2012-2824 has a moderate severity rating due to its potential to cause a denial of service.
How do I fix CVE-2012-2824?
To fix CVE-2012-2824, update Google Chrome to version 20.0.1132.43 or later.
What types of attacks can exploit CVE-2012-2824?
CVE-2012-2824 can be exploited by remote attackers to trigger a denial of service through SVG painting vulnerabilities.
Which versions of Google Chrome are affected by CVE-2012-2824?
CVE-2012-2824 affects Google Chrome versions prior to 20.0.1132.43.
Can CVE-2012-2824 affect my iPhone?
Yes, CVE-2012-2824 may affect iPhone OS versions up to 6.0.2 that use vulnerable Chrome versions.
- agent/references
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/author
- agent/weakness
- agent/severity
- agent/event
- agent/description
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/google
- canonical/google chrome
- version/google chrome/20.0.1132.42
- version/google chrome/20.0.1132.0
- version/google chrome/20.0.1132.1
- version/google chrome/20.0.1132.2
- version/google chrome/20.0.1132.3
- version/google chrome/20.0.1132.4
- version/google chrome/20.0.1132.5
- version/google chrome/20.0.1132.6
- version/google chrome/20.0.1132.7
- version/google chrome/20.0.1132.8
- version/google chrome/20.0.1132.9
- version/google chrome/20.0.1132.10
- version/google chrome/20.0.1132.11
- version/google chrome/20.0.1132.12
- version/google chrome/20.0.1132.13
- version/google chrome/20.0.1132.14
- version/google chrome/20.0.1132.15
- version/google chrome/20.0.1132.16
- version/google chrome/20.0.1132.17
- version/google chrome/20.0.1132.18
- version/google chrome/20.0.1132.19
- version/google chrome/20.0.1132.20
- version/google chrome/20.0.1132.21
- version/google chrome/20.0.1132.22
- version/google chrome/20.0.1132.23
- version/google chrome/20.0.1132.24
- version/google chrome/20.0.1132.25
- version/google chrome/20.0.1132.26
- version/google chrome/20.0.1132.27
- version/google chrome/20.0.1132.28
- version/google chrome/20.0.1132.29
- version/google chrome/20.0.1132.30
- version/google chrome/20.0.1132.31
- version/google chrome/20.0.1132.32
- version/google chrome/20.0.1132.33
- version/google chrome/20.0.1132.34
- version/google chrome/20.0.1132.35
- version/google chrome/20.0.1132.36
- version/google chrome/20.0.1132.37
- version/google chrome/20.0.1132.38
- version/google chrome/20.0.1132.39
- version/google chrome/20.0.1132.40
- version/google chrome/20.0.1132.41
- vendor/apple
- canonical/iphone os
- version/iphone os/6.0.2
- version/iphone os/6.0
- version/iphone os/6.0.1