CVE-2012-2843: Use After Free
First published: Thu Jul 12 2012(Updated: )
Use-after-free vulnerability in Google Chrome before 20.0.1132.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to layout height tracking.
Credit: cve-coordination@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Chrome | <=20.0.1132.56 | |
| Google Chrome | =20.0.1132.0 | |
| Google Chrome | =20.0.1132.1 | |
| Google Chrome | =20.0.1132.2 | |
| Google Chrome | =20.0.1132.3 | |
| Google Chrome | =20.0.1132.4 | |
| Google Chrome | =20.0.1132.5 | |
| Google Chrome | =20.0.1132.6 | |
| Google Chrome | =20.0.1132.7 | |
| Google Chrome | =20.0.1132.8 | |
| Google Chrome | =20.0.1132.9 | |
| Google Chrome | =20.0.1132.10 | |
| Google Chrome | =20.0.1132.11 | |
| Google Chrome | =20.0.1132.12 | |
| Google Chrome | =20.0.1132.13 | |
| Google Chrome | =20.0.1132.14 | |
| Google Chrome | =20.0.1132.15 | |
| Google Chrome | =20.0.1132.16 | |
| Google Chrome | =20.0.1132.17 | |
| Google Chrome | =20.0.1132.18 | |
| Google Chrome | =20.0.1132.19 | |
| Google Chrome | =20.0.1132.20 | |
| Google Chrome | =20.0.1132.21 | |
| Google Chrome | =20.0.1132.22 | |
| Google Chrome | =20.0.1132.23 | |
| Google Chrome | =20.0.1132.24 | |
| Google Chrome | =20.0.1132.25 | |
| Google Chrome | =20.0.1132.26 | |
| Google Chrome | =20.0.1132.27 | |
| Google Chrome | =20.0.1132.28 | |
| Google Chrome | =20.0.1132.29 | |
| Google Chrome | =20.0.1132.30 | |
| Google Chrome | =20.0.1132.31 | |
| Google Chrome | =20.0.1132.32 | |
| Google Chrome | =20.0.1132.33 | |
| Google Chrome | =20.0.1132.34 | |
| Google Chrome | =20.0.1132.35 | |
| Google Chrome | =20.0.1132.36 | |
| Google Chrome | =20.0.1132.37 | |
| Google Chrome | =20.0.1132.38 | |
| Google Chrome | =20.0.1132.39 | |
| Google Chrome | =20.0.1132.40 | |
| Google Chrome | =20.0.1132.41 | |
| Google Chrome | =20.0.1132.42 | |
| Google Chrome | =20.0.1132.43 | |
| Google Chrome | =20.0.1132.45 | |
| Google Chrome | =20.0.1132.46 | |
| Google Chrome | =20.0.1132.47 | |
| Google Chrome | =20.0.1132.54 | |
| Google Chrome | =20.0.1132.55 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://code.google.com/p/chromium/issues/detail?id=130595
- http://googlechromereleases.blogspot.com/2012/07/stable-channel-update.html
- http://lists.apple.com/archives/security-announce/2012/Sep/msg00001.html
- http://lists.apple.com/archives/security-announce/2012/Sep/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00009.html
- http://support.apple.com/kb/HT5485
- http://support.apple.com/kb/HT5502
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15569
Frequently Asked Questions
What is the severity of CVE-2012-2843?
CVE-2012-2843 is classified with a high severity rating due to its potential to cause denial of service and other unspecified impacts.
How do I fix CVE-2012-2843?
To fix CVE-2012-2843, update Google Chrome to version 20.0.1132.57 or later.
What versions of Google Chrome are affected by CVE-2012-2843?
Google Chrome versions prior to 20.0.1132.57, specifically 20.0.1132.0 to 20.0.1132.56, are affected by CVE-2012-2843.
Can exploiting CVE-2012-2843 allow for remote code execution?
The exploitation of CVE-2012-2843 primarily leads to denial of service, and it is not explicitly stated to allow for remote code execution.
How was CVE-2012-2843 discovered?
CVE-2012-2843 was discovered as a use-after-free vulnerability in Google Chrome's handling of layout height tracking.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/google
- canonical/google chrome
- version/google chrome/20.0.1132.56
- version/google chrome/20.0.1132.0
- version/google chrome/20.0.1132.1
- version/google chrome/20.0.1132.2
- version/google chrome/20.0.1132.3
- version/google chrome/20.0.1132.4
- version/google chrome/20.0.1132.5
- version/google chrome/20.0.1132.6
- version/google chrome/20.0.1132.7
- version/google chrome/20.0.1132.8
- version/google chrome/20.0.1132.9
- version/google chrome/20.0.1132.10
- version/google chrome/20.0.1132.11
- version/google chrome/20.0.1132.12
- version/google chrome/20.0.1132.13
- version/google chrome/20.0.1132.14
- version/google chrome/20.0.1132.15
- version/google chrome/20.0.1132.16
- version/google chrome/20.0.1132.17
- version/google chrome/20.0.1132.18
- version/google chrome/20.0.1132.19
- version/google chrome/20.0.1132.20
- version/google chrome/20.0.1132.21
- version/google chrome/20.0.1132.22
- version/google chrome/20.0.1132.23
- version/google chrome/20.0.1132.24
- version/google chrome/20.0.1132.25
- version/google chrome/20.0.1132.26
- version/google chrome/20.0.1132.27
- version/google chrome/20.0.1132.28
- version/google chrome/20.0.1132.29
- version/google chrome/20.0.1132.30
- version/google chrome/20.0.1132.31
- version/google chrome/20.0.1132.32
- version/google chrome/20.0.1132.33
- version/google chrome/20.0.1132.34
- version/google chrome/20.0.1132.35
- version/google chrome/20.0.1132.36
- version/google chrome/20.0.1132.37
- version/google chrome/20.0.1132.38
- version/google chrome/20.0.1132.39
- version/google chrome/20.0.1132.40
- version/google chrome/20.0.1132.41
- version/google chrome/20.0.1132.42
- version/google chrome/20.0.1132.43
- version/google chrome/20.0.1132.45
- version/google chrome/20.0.1132.46
- version/google chrome/20.0.1132.47
- version/google chrome/20.0.1132.54
- version/google chrome/20.0.1132.55