CVE-2013-6641

Use-after-free vulnerability in the FormAssociatedElement::formRemovedFromTree function in core/html/FormAssociatedElement.cpp in Blink, as used in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of the past names map of a FORM element.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

History

10 Nov 2022, 20:10

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
References (SUSE) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html - Mailing List, Third Party Advisory (SUSE) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.html - Broken Link, Mailing List, Third Party Advisory
References (CONFIRM) https://code.google.com/p/chromium/issues/detail?id=326854 - Exploit, Mailing List, Vendor Advisory (CONFIRM) https://code.google.com/p/chromium/issues/detail?id=326854 - Exploit, Issue Tracking, Mailing List, Vendor Advisory

Information

Published : 2014-01-16 12:17

Updated : 2024-02-04 18:35


NVD link : CVE-2013-6641

Mitre link : CVE-2013-6641

CVE.ORG link : CVE-2013-6641


JSON object : View

Products Affected

microsoft

  • windows

opensuse

  • opensuse

google

  • chrome

linux

  • linux_kernel

apple

  • mac_os_x
CWE
CWE-416

Use After Free