Use-after-free vulnerability in the Pepper plugins in Google Chrome (rpm)ID: oval:org.secpod.oval:def:21694 | Date: (C)2014-11-24 (M)2023-11-16 |
Class: VULNERABILITY | Family: unix |
The host is installed with Google Chrome before 39.0.2171.65 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to properly handle crafted Flash content that triggers an attempted PepperMediaDeviceManager access outside of the object's lifetime. Successful exploitation could allow attackers to crash the service.