Google Chrome Multiple Use-After-Free Vulnerabilities
30 Jul. 2015
Summary
Multiple use-after-free vulnerabilities in the ServiceWorkerScriptCacheMap implementation in content/browser/service_worker/service_worker_script_cache_map.cc in Google Chrome before 41.0.2272.76 allow remote attackers to cause a denial of service or possibly have other impact via vectors that trigger a ServiceWorkerContextWrapper::DeleteAndStartOver call, related to the NotifyStartedCaching and NotifyFinishedCaching functions.
Credit:
The information has been provided by cloudfuzzer, Zhang (demi6od) of NSFOCUS Security Team, Aki Helin of OUSPG, Collin Payne, Maksymillian Motyl.
Vulnerable Systems:
* Google Chrome before 41.0.2272.76
Immune Systems:
* Google Chrome after 41.0.2272.76
Google Chrome is prone to multiple vulnerabilities. Attackers may exploit these issues to execute arbitrary code, bypass certain security restrictions, and gain elevated privileges; other attacks are also possible.