Launchpad CVE tracker

CVE 2014-3178

Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree inconsistencies.

Related bugs and status

CVE-2014-3178 (Candidate) is related to these bugs:

Bug #1310163: chromium-browser with multiple tabs crashes on startup in KDE environment

Summary				In	Importance	Status
	1310163	chromium-browser with multiple tabs crashes on startup in KDE environment		chromium-browser (Ubuntu)	High	Fix Released
	1310163	chromium-browser with multiple tabs crashes on startup in KDE environment		Chromium Browser	Unknown	Unknown

Bug #1373802: Regression: chromium-browser no longer loads policies in 37.0.2062.120-0ubuntu0.14.04.1~pkg1049

Summary				In	Importance	Status
	1373802	Regression: chromium-browser no longer loads policies in 37.0.2062.120-0ubuntu0.14.04.1~pkg1049		chromium-browser (Ubuntu)	Critical	Fix Released

Bug #1374222: path for policy files changed

Summary				In	Importance	Status
	1374222	path for policy files changed		chromium-browser (Ubuntu)	Undecided	Fix Released
	1374222	path for policy files changed		apparmor (Ubuntu)	Undecided	Invalid

Bug #1381644: CHROMIUM_USER_FLAGS environment variable is ignored

Summary				In	Importance	Status
	1381644	CHROMIUM_USER_FLAGS environment variable is ignored		chromium-browser (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2014-3178

References