VYPR
Unrated severityNVD Advisory· Published Nov 19, 2013· Updated Jun 17, 2026

CVE-2013-6631

CVE-2013-6631

Description

Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via vectors that trigger the absence of certain statistics initialization, leading to the skipping of a required DeRegisterExternalTransport call.

Affected products

47
  • Google/Chrome45 versions
    cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 44 more
    • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <=31.0.1650.47
    • cpe:2.3:a:google:chrome:31.0.1650.0:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.10:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.11:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.12:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.13:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.14:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.15:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.16:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.17:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.18:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.19:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.2:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.20:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.22:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.23:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.25:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.26:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.27:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.28:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.29:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.3:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.30:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.31:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.32:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.33:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.34:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.35:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.36:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.37:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.38:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.39:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.4:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.41:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.42:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.43:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.44:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.45:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.46:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.5:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.6:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.7:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.8:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:31.0.1650.9:*:*:*:*:*:*:*
    • (no CPE)range: <31.0.1650.48
  • Google/WebRTCllm-create

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.