Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в Google Chrome / Chromium
Опубликовано:17 июня 2014 г.
Источник:
SecurityVulns ID:13842
Тип:клиент
Уровень опасности:
8/10
Описание:Повреждения памяти, переполнения буфера.
Затронутые продукты:GOOGLE : Chrome 35
CVE:CVE-2014-3157 (Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that are too small for proper interaction with an underlying FFmpeg library.)
 CVE-2014-3156 (Buffer overflow in the clipboard implementation in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger unexpected bitmap data, related to content/renderer/renderer_clipboard_client.cc and content/renderer/webclipboard_impl.cc.)
 CVE-2014-3155 (net/spdy/spdy_write_queue.cc in the SPDY implementation in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service (out-of-bounds read) by leveraging incorrect queue maintenance.)
 CVE-2014-3154 (Use-after-free vulnerability in the ChildThread::Shutdown function in content/child/child_thread.cc in the filesystem API in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to a Blink shutdown.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 2959-1] chromium-browser security update (17.06.2014)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород