Upstream information

CVE-2010-1773 at MITRE

Description

Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in WebKit before r59950, as used in Google Chrome before 5.0.375.70, allows remote attackers to obtain sensitive information, cause a denial of service (memory corruption and application crash), or possibly execute arbitrary code via vectors related to list markers for HTML lists, aka rdar problem 8009118.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having critical severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 9.3
Vector AV:N/AC:M/Au:N/C:C/I:C/A:C
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
SUSE Bugzilla entries: 601349 [RESOLVED / WONTFIX], 622994 [RESOLVED / FIXED]

SUSE Security Advisories:

  • SUSE-SR:2010:015, published Tue, 17 Aug 2010 10:00:00 +0000
  • SUSE-SR:2011:002, published Tue, 25 Jan 2011 11:00:00 +0000
  • openSUSE-SU-2010:0458-1 openSUSE-SU-2011:0024-1


SUSE Timeline for this CVE

CVE page created: Fri Jun 28 07:27:31 2013
CVE page last modified: Mon Sep 9 20:57:36 2024