CVE-2013-2882 Common Vulnerabilities and Exposures

Upstream information

CVE-2013-2882 at MITRE

Description

Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	7.5
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	Partial
Integrity Impact	Partial
Availability Impact	Partial

SUSE Bugzilla entry: 833343 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SU-2019:14246-1, published Wed Dec 11 13:19:40 MST 2019

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Server 11 SP4-LTSS	`MozillaFirefox >= 68.2.0-78.51.4` `MozillaFirefox-branding-SLED >= 68-21.9.8` `MozillaFirefox-translations-common >= 68.2.0-78.51.4` `MozillaFirefox-translations-other >= 68.2.0-78.51.4` `firefox-atk-lang >= 2.26.1-2.8.4` `firefox-gdk-pixbuf-lang >= 2.36.11-2.8.4` `firefox-gdk-pixbuf-query-loaders >= 2.36.11-2.8.4` `firefox-gdk-pixbuf-thumbnailer >= 2.36.11-2.8.4` `firefox-gio-branding-upstream >= 2.54.3-2.14.7` `firefox-glib2-lang >= 2.54.3-2.14.7` `firefox-glib2-tools >= 2.54.3-2.14.7` `firefox-gtk3-branding-upstream >= 3.10.9-2.15.3` `firefox-gtk3-data >= 3.10.9-2.15.3` `firefox-gtk3-immodule-amharic >= 3.10.9-2.15.3` `firefox-gtk3-immodule-inuktitut >= 3.10.9-2.15.3` `firefox-gtk3-immodule-multipress >= 3.10.9-2.15.3` `firefox-gtk3-immodule-thai >= 3.10.9-2.15.3` `firefox-gtk3-immodule-vietnamese >= 3.10.9-2.15.3` `firefox-gtk3-immodule-xim >= 3.10.9-2.15.3` `firefox-gtk3-immodules-tigrigna >= 3.10.9-2.15.3` `firefox-gtk3-lang >= 3.10.9-2.15.3` `firefox-gtk3-tools >= 3.10.9-2.15.3` `firefox-libatk-1_0-0 >= 2.26.1-2.8.4` `firefox-libcairo-gobject2 >= 1.15.10-2.13.4` `firefox-libcairo2 >= 1.15.10-2.13.4` `firefox-libffi4 >= 5.3.1+r233831-14.1` `firefox-libffi7 >= 3.2.1.git259-2.3.3` `firefox-libgdk_pixbuf-2_0-0 >= 2.36.11-2.8.4` `firefox-libgtk-3-0 >= 3.10.9-2.15.3` `firefox-libharfbuzz0 >= 1.7.5-2.7.4` `firefox-libpango-1_0-0 >= 1.40.14-2.7.4` `libfirefox-gio-2_0-0 >= 2.54.3-2.14.7` `libfirefox-glib-2_0-0 >= 2.54.3-2.14.7` `libfirefox-gmodule-2_0-0 >= 2.54.3-2.14.7` `libfirefox-gobject-2_0-0 >= 2.54.3-2.14.7` `libfirefox-gthread-2_0-0 >= 2.54.3-2.14.7` `libfreebl3 >= 3.45-38.9.3` `libfreebl3-32bit >= 3.45-38.9.3` `libsoftokn3 >= 3.45-38.9.3` `libsoftokn3-32bit >= 3.45-38.9.3` `mozilla-nspr >= 4.21-29.6.1` `mozilla-nspr-32bit >= 4.21-29.6.1` `mozilla-nspr-devel >= 4.21-29.6.1` `mozilla-nss >= 3.45-38.9.3` `mozilla-nss-32bit >= 3.45-38.9.3` `mozilla-nss-certs >= 3.45-38.9.3` `mozilla-nss-certs-32bit >= 3.45-38.9.3` `mozilla-nss-devel >= 3.45-38.9.3` `mozilla-nss-tools >= 3.45-38.9.3`	Patchnames: slessp4-firefox-201910-14246

SUSE Timeline for this CVE

CVE page created: Wed Jul 31 17:15:15 2013
CVE page last modified: Fri Oct 13 19:02:57 2023