CVE-2015-1232

Publication date 9 March 2015

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

Description

Array index error in the MidiManagerUsb::DispatchSendMidiData function in media/midi/midi_manager_usb.cc in Google Chrome before 41.0.2272.76 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging renderer access to provide an invalid port index that triggers an out-of-bounds write operation, a different vulnerability than CVE-2015-1212.

Read the notes from the security team

Status

Package Ubuntu Release Status
chromium-browser 15.10 wily
Fixed 41.0.2272.76-0ubuntu1.1134
15.04 vivid
Fixed 41.0.2272.76-0ubuntu1.1134
14.10 utopic
Fixed 41.0.2272.76-0ubuntu0.14.10.1.1118
14.04 LTS trusty
Fixed 41.0.2272.76-0ubuntu0.14.04.1.1076
12.04 LTS precise Ignored
10.04 LTS lucid Ignored end of life
oxide-qt 15.10 wily
Not affected
15.04 vivid
Not affected
14.10 utopic
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Not in release

Notes

chrisccoulson

It's not currently possible to use this functionality in Oxide

References

Other references