{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-04-24T00:00:00", "descriptions": [{"lang": "en", "value": "core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage \"type confusion\" for SELECT elements."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-01-04T20:57:01", "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome"}, "references": [{"name": "58301", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/58301"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html"}, {"name": "openSUSE-SU-2014:0669", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.apple.com/kb/HT6537"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://src.chromium.org/viewvc/blink?revision=171216&view=revision"}, {"name": "APPLE-SA-2014-06-30-4", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0175.html"}, {"name": "GLSA-201408-16", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-201408-16.xml"}, {"name": "60372", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/60372"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.apple.com/kb/HT6254"}, {"name": "openSUSE-SU-2014:0668", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html"}, {"name": "DSA-2920", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2014/dsa-2920"}, {"name": "APPLE-SA-2014-06-30-3", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://code.google.com/p/chromium/issues/detail?id=349903"}, {"name": "APPLE-SA-2014-05-21-1", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html"}, {"name": "67572", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/67572"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@google.com", "ID": "CVE-2014-1731", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage \"type confusion\" for SELECT elements."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "58301", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/58301"}, {"name": "http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html", "refsource": "CONFIRM", "url": "http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html"}, {"name": "openSUSE-SU-2014:0669", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html"}, {"name": "https://support.apple.com/kb/HT6537", "refsource": "CONFIRM", "url": "https://support.apple.com/kb/HT6537"}, {"name": "https://src.chromium.org/viewvc/blink?revision=171216&view=revision", "refsource": "CONFIRM", "url": "https://src.chromium.org/viewvc/blink?revision=171216&view=revision"}, {"name": "APPLE-SA-2014-06-30-4", "refsource": "APPLE", "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0175.html"}, {"name": "GLSA-201408-16", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201408-16.xml"}, {"name": "60372", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/60372"}, {"name": "http://support.apple.com/kb/HT6254", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT6254"}, {"name": "openSUSE-SU-2014:0668", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html"}, {"name": "DSA-2920", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2014/dsa-2920"}, {"name": "APPLE-SA-2014-06-30-3", "refsource": "APPLE", "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html"}, {"name": "https://code.google.com/p/chromium/issues/detail?id=349903", "refsource": "CONFIRM", "url": "https://code.google.com/p/chromium/issues/detail?id=349903"}, {"name": "APPLE-SA-2014-05-21-1", "refsource": "APPLE", "url": "http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html"}, {"name": "67572", "refsource": "BID", "url": "http://www.securityfocus.com/bid/67572"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T09:50:10.942Z"}, "title": "CVE Program Container", "references": [{"name": "58301", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/58301"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html"}, {"name": "openSUSE-SU-2014:0669", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.apple.com/kb/HT6537"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://src.chromium.org/viewvc/blink?revision=171216&view=revision"}, {"name": "APPLE-SA-2014-06-30-4", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0175.html"}, {"name": "GLSA-201408-16", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-201408-16.xml"}, {"name": "60372", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/60372"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.apple.com/kb/HT6254"}, {"name": "openSUSE-SU-2014:0668", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html"}, {"name": "DSA-2920", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2014/dsa-2920"}, {"name": "APPLE-SA-2014-06-30-3", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://code.google.com/p/chromium/issues/detail?id=349903"}, {"name": "APPLE-SA-2014-05-21-1", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html"}, {"name": "67572", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/67572"}]}]}, "cveMetadata": {"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "assignerShortName": "Chrome", "cveId": "CVE-2014-1731", "datePublished": "2014-04-26T10:00:00", "dateReserved": "2014-01-29T00:00:00", "dateUpdated": "2024-08-06T09:50:10.942Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "matchCriteriaId": "59F9F3BD-65CD-462B-A3CD-D970F48AABAB", "versionEndExcluding": "34.0.1847.131", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*", "matchCriteriaId": "4781BF1E-8A4E-4AFF-9540-23D523EE30DD", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "matchCriteriaId": "682715EE-1BA1-4A6B-AEB6-B99257B38A45", "versionEndExcluding": "34.0.1847.132", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage \"type confusion\" for SELECT elements."}, {"lang": "es", "value": "core/html/HTMLSelectElement.cpp en la implementaci\u00f3n DOM en Blink, utilizado en Google Chrome anterior a 34.0.1847.131 en Windows y OS X y anterior a 34.0.1847.132 en Linux, no comprueba debidamente el estado renderer en un evento focus, lo que permite a atacantes remotos causar una denegaci\u00f3n de servicio o posiblemente tener otro impacto no especificado a trav\u00e9s de vectores que aprovechan \"confusi\u00f3n de tipo\" para elementos SELECT."}], "id": "CVE-2014-1731", "lastModified": "2023-11-07T02:19:15.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-04-26T10:55:05.480", "references": [{"source": "chrome-cve-admin@google.com", "url": "http://archives.neohapsis.com/archives/bugtraq/2014-05/0128.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0174.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://archives.neohapsis.com/archives/bugtraq/2014-06/0175.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://secunia.com/advisories/58301"}, {"source": "chrome-cve-admin@google.com", "url": "http://secunia.com/advisories/60372"}, {"source": "chrome-cve-admin@google.com", "url": "http://security.gentoo.org/glsa/glsa-201408-16.xml"}, {"source": "chrome-cve-admin@google.com", "url": "http://support.apple.com/kb/HT6254"}, {"source": "chrome-cve-admin@google.com", "url": "http://www.debian.org/security/2014/dsa-2920"}, {"source": "chrome-cve-admin@google.com", "url": "http://www.securityfocus.com/bid/67572"}, {"source": "chrome-cve-admin@google.com", "url": "https://code.google.com/p/chromium/issues/detail?id=349903"}, {"source": "chrome-cve-admin@google.com", "url": "https://src.chromium.org/viewvc/blink?revision=171216&view=revision"}, {"source": "chrome-cve-admin@google.com", "url": "https://support.apple.com/kb/HT6537"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-843"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "webkitgtk: improper renderer state check in core/html/HTMLSelectElement.cpp (WSA-2015-0001)", "id": "1186273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1186273"}, "csaw": false, "cvss": {"cvss_base_score": "5.1", "cvss_scoring_vector": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "status": "draft"}, "details": ["core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly check renderer state upon a focus event, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage \"type confusion\" for SELECT elements."], "name": "CVE-2014-1731", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Will not fix", "package_name": "webkitgtk", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Will not fix", "package_name": "webkitgtk3", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2015-01-26T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-1731\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-1731\nhttp://webkitgtk.org/security/WSA-2015-0001.html"], "statement": "Red Hat Product Security has rated this issue as having Moderate security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.", "threat_severity": "Moderate", "upstream_fix": "2.4.2 and 2.4.8, WebKitGTK+ 2.4.1"}