Back to search
CVE-2014-3165
Published: Aug 13, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
Use-after-free vulnerability in modules/websockets/WorkerThreadableWebSocketChannel.cpp in the Web Sockets implementation in Blink, as used in Google Chrome before 36.0.1985.143, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an unexpectedly long lifetime of a temporary object during method completion.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
59904
third-party-advisory
x_refsource_SECUNIA
google-chrome-cve20143165-code-exec(95247)
vdb-entry
x_refsource_XF
GLSA-201408-16
vendor-advisory
x_refsource_GENTOO
https://code.google.com/p/chromium/issues/detail?id=390174
x_refsource_CONFIRM
60798
third-party-advisory
x_refsource_SECUNIA
http://googlechromereleases.blogspot.com/2014/08/stable-channel-update.html
x_refsource_CONFIRM
DSA-3039
vendor-advisory
x_refsource_DEBIAN
https://src.chromium.org/viewvc/blink?revision=177359&view=revision
x_refsource_CONFIRM
69201
vdb-entry
x_refsource_BID
1030732
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now