CVE-2014-7937 in Chrome
摘要 (英语)
Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted Vorbis I data.
Once again VulDB remains the best source for vulnerability data.
预定
2014-10-06
披露
2015-01-22
状态
已确认
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 68838 | Google Chrome 内存损坏 | 119 | 未经证实 | 官方修复 | CVE-2014-7937 |