← voltar
CVE-2014-3157

CVE-2014-3157

EPSS 1.7%
Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that are too small for proper interaction with an underlying FFmpeg library.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://googlechromereleases.blogspot.com/2014/06/stable-channel-update.htmlhttps://code.google.com/p/chromium/issues/detail?id=368980http://secunia.com/advisories/58585http://secunia.com/advisories/59090http://secunia.com/advisories/60061http://secunia.com/advisories/60372http://security.gentoo.org/glsa/glsa-201408-16.xmlhttps://src.chromium.org/viewvc/chrome?revision=268831&view=revisionhttp://www.debian.org/security/2014/dsa-2959http://www.securityfocus.com/bid/67972