CVE-2014-1745
Description
Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger removal of an SVGFontFaceElement object, related to core/svg/SVGFontFaceElement.cpp.
Risk Information
Base Score
7.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L
EPSS Score
Exploitation Probability
0.802
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Updates for Google Chrome (66.0.3359.170) | Windows |
| Updates for Google Chrome (x64) (66.0.3359.170) | Windows |
| Updates for Google Chrome (66.0.3359.181) | Windows |
| Updates for Google Chrome (x64) (66.0.3359.181) | Windows |
| Updates for Google Chrome (67.0.3396.62) | Windows |
| Updates for Google Chrome (x64) (67.0.3396.62) | Windows |
| Updates for Google Chrome (67.0.3396.79) | Windows |
| Updates for Google Chrome (x64) (67.0.3396.79) | Windows |
| Updates for Google Chrome (67.0.3396.87) | Windows |
| Updates for Google Chrome (x64) (67.0.3396.87) | Windows |
| Google Chrome (67.0.3396.99) | Windows |
| Google Chrome (x64) (67.0.3396.99) | Windows |
| Multiple vulnerabilities fixed in Chrome 35.0.1916.114 | Windows |
| Multiple vulnerabilities fixed in Chrome (x64) 35.0.1916.114 | Windows |
| Multiple vulnerabilities are fixed in Google Chrome for Mac 35.0.1916.114 | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Ventura 13.3 (Software Update) - AutoReboot | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Ventura 13.3.1 (Software Update) - AutoReboot (CVE-2023-28206,CVE-2023-28205) | Mac |
| Updates for Google Chrome (66.0.3359.170) (For Ubuntu) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For Debian) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Debian) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Debian) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Debian) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Debian) | Linux |
| Google Chrome (67.0.3396.99) (For Debian) | Linux |
| Multiple vulnerabilities fixed in Chrome 35.0.1916.114 (For Debian) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For Centos) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Centos) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Centos) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Centos) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Centos) | Linux |
| Google Chrome (67.0.3396.99) (For Centos) | Linux |
| Multiple vulnerabilities fixed in Chrome 35.0.1916.114 (For Centos) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For RedHat) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For RedHat) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For RedHat) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For RedHat) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For RedHat) | Linux |
| Google Chrome (67.0.3396.99) (For RedHat) | Linux |
| Multiple vulnerabilities fixed in Chrome 35.0.1916.114 (For RedHat) | Linux |
| Updates for Google Chrome (66.0.3359.170) (For Suse) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Suse) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Suse) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Suse) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Suse) | Linux |
| Google Chrome (67.0.3396.99) (For Suse) | Linux |
| Multiple vulnerabilities fixed in Chrome 35.0.1916.114 (For Suse) | Linux |
| Updates for Google Chrome (66.0.3359.181) (For Ubuntu) | Linux |
| Updates for Google Chrome (67.0.3396.62) (For Ubuntu) | Linux |
| Updates for Google Chrome (67.0.3396.79) (For Ubuntu) | Linux |
| Updates for Google Chrome (67.0.3396.87) (For Ubuntu) | Linux |
| Google Chrome (67.0.3396.99) (For Ubuntu) | Linux |
| Multiple vulnerabilities fixed in Chrome 35.0.1916.114 (For Ubuntu) | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) libjavascriptcoregtk-4_0-18-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) libjavascriptcoregtk-4_0-18-debuginfo-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) libwebkit2gtk-4_0-37-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) libwebkit2gtk-4_0-37-debuginfo-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) libwebkit2gtk3-lang-2.42.5-2.168.2.noarch.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) typelib-1_0-JavaScriptCore-4_0-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) typelib-1_0-WebKit2-4_0-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) typelib-1_0-WebKit2WebExtension-4_0-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) webkit2gtk-4_0-injected-bundles-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) webkit2gtk-4_0-injected-bundles-debuginfo-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0545-1(SUSE Linux Enterprise Server 12 SP5 ) webkit2gtk3-debugsource-2.42.5-2.168.2.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) webkit2gtk3-devel-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) WebKitGTK-4.0-lang-2.42.5-150400.4.75.1.noarch.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) WebKitGTK-4.1-lang-2.42.5-150400.4.75.1.noarch.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) WebKitGTK-6.0-lang-2.42.5-150400.4.75.1.noarch.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) libwebkitgtk-6_0-4-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) libwebkit2gtk-4_1-0-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) libwebkit2gtk-4_0-37-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) typelib-1_0-WebKit2-4_0-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) typelib-1_0-WebKit2-4_1-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) webkit2gtk3-debugsource-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) webkit2gtk3-soup2-devel-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) webkit2gtk4-debugsource-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) libjavascriptcoregtk-4_1-0-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) libjavascriptcoregtk-6_0-1-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) libjavascriptcoregtk-4_0-18-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) libwebkitgtk-6_0-4-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) libwebkit2gtk-4_1-0-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) webkit2gtk3-soup2-debugsource-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) libwebkit2gtk-4_0-37-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) typelib-1_0-JavaScriptCore-4_0-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) typelib-1_0-JavaScriptCore-4_1-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) webkitgtk-6_0-injected-bundles-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) webkit2gtk-4_0-injected-bundles-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) webkit2gtk-4_1-injected-bundles-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) typelib-1_0-WebKit2WebExtension-4_0-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) typelib-1_0-WebKit2WebExtension-4_1-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) libjavascriptcoregtk-4_1-0-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Development Tools Module 15-SP5) libjavascriptcoregtk-6_0-1-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) libjavascriptcoregtk-4_0-18-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Basesystem Module 15-SP5) webkit2gtk-4_0-injected-bundles-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| SUSE-SU-2024:0548-1(Desktop Applications Module 15-SP5) webkit2gtk-4_1-injected-bundles-debuginfo-2.42.5-150400.4.75.1.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-debuginfo-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-debuginfo-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-debugsource-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-debugsource-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-devel-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-devel-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-devel-debuginfo-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-devel-debuginfo-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-debuginfo-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-debuginfo-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-devel-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-devel-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-devel-debuginfo-2.42.5-1.el9.i686.rpm | Linux |
| (RHSA-2024:2126)Important: security update webkit2gtk3-jsc-devel-debuginfo-2.42.5-1.el9.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-debuginfo-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-debuginfo-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-debugsource-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-debugsource-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-devel-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-devel-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-devel-debuginfo-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-devel-debuginfo-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-debuginfo-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-debuginfo-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-devel-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-devel-2.42.5-1.el8.x86_64.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-devel-debuginfo-2.42.5-1.el8.i686.rpm | Linux |
| (RHSA-2024:2982)Important: security update webkit2gtk3-jsc-devel-debuginfo-2.42.5-1.el8.x86_64.rpm | Linux |
| Webkit2gtk3 update (ELSA-2024-2982) webkit2gtk3-2.42.5-1.el8.i686.rpm | Linux |
| Webkit2gtk3 update (ELSA-2024-2982) webkit2gtk3-2.42.5-1.el8.x86_64.rpm | Linux |
| Webkit2gtk3-devel update (ELSA-2024-2982) webkit2gtk3-devel-2.42.5-1.el8.i686.rpm | Linux |
| Webkit2gtk3-devel update (ELSA-2024-2982) webkit2gtk3-devel-2.42.5-1.el8.x86_64.rpm | Linux |
| Webkit2gtk3-jsc update (ELSA-2024-2982) webkit2gtk3-jsc-2.42.5-1.el8.i686.rpm | Linux |
| Webkit2gtk3-jsc update (ELSA-2024-2982) webkit2gtk3-jsc-2.42.5-1.el8.x86_64.rpm | Linux |
| Webkit2gtk3-jsc-devel update (ELSA-2024-2982) webkit2gtk3-jsc-devel-2.42.5-1.el8.i686.rpm | Linux |
| Webkit2gtk3-jsc-devel update (ELSA-2024-2982) webkit2gtk3-jsc-devel-2.42.5-1.el8.x86_64.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-jsc-devel-2.42.5-1.el8.x86_64.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-jsc-devel-2.42.5-1.el8.i686.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-jsc-2.42.5-1.el8.x86_64.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-jsc-2.42.5-1.el8.i686.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-devel-2.42.5-1.el8.x86_64.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-devel-2.42.5-1.el8.i686.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-2.42.5-1.el8.x86_64.rpm | Linux |
| webkit2gtk3 security update (RLSA-2024:2982) webkit2gtk3-2.42.5-1.el8.i686.rpm | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-307513 | Updates for Google Chrome (66.0.3359.170) |
| PATCH-307515 | Updates for Google Chrome (x64) (66.0.3359.170) |
| PATCH-307534 | Updates for Google Chrome (66.0.3359.181) |
| PATCH-307535 | Updates for Google Chrome (x64) (66.0.3359.181) |
| PATCH-307607 | Updates for Google Chrome (67.0.3396.62) |
| PATCH-307608 | Updates for Google Chrome (x64) (67.0.3396.62) |
| PATCH-307641 | Updates for Google Chrome (67.0.3396.79) |
| PATCH-307644 | Updates for Google Chrome (x64) (67.0.3396.79) |
| PATCH-307660 | Updates for Google Chrome (67.0.3396.87) |
| PATCH-307662 | Updates for Google Chrome (x64) (67.0.3396.87) |
| PATCH-307715 | Google Chrome (67.0.3396.99) |
| PATCH-307716 | Google Chrome (x64) (67.0.3396.99) |
| PATCH-313038 | Google Chrome (80.0.3987.122) |
| PATCH-313039 | Google Chrome (x64) (80.0.3987.122) |
| PATCH-611995 | Google Chrome for Mac (140.0.7339.132 , 140.0.7339.133) |
| PATCH-611601 | Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only) |
| PATCH-611601 | Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234