Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-1725

Опубликовано: 09 апр. 2014
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5

Описание

The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as used in Google Chrome before 34.0.1847.116, does not properly handle string data composed exclusively of whitespace characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via a window.atob method call.

РелизСтатусПримечание
devel

not-affected

34.0.1847.116-0ubuntu2
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [34.0.1847.116-0ubuntu2]]
lucid

ignored

end of life
precise

released

34.0.1847.116-0ubuntu~1.12.04.0~pkg884
quantal

released

34.0.1847.116-0ubuntu~1.12.10.0~pkg900
saucy

released

34.0.1847.116-0ubuntu~1.13.10.0~pkg991
trusty

not-affected

34.0.1847.116-0ubuntu2
trusty/esm

DNE

trusty was not-affected [34.0.1847.116-0ubuntu2]
upstream

released

34.0.1847.116

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
lucid

DNE

precise

DNE

quantal

DNE

saucy

DNE

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 81%
0.01612
Низкий

5 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2014-1725

nvd
около 11 лет назад

The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as used in Google Chrome before 34.0.1847.116, does not properly handle string data composed exclusively of whitespace characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via a window.atob method call.

debian логотип

CVE-2014-1725

debian
около 11 лет назад

The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as ...

github логотип

GHSA-78gj-hp65-vh47

github
около 3 лет назад

The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as used in Google Chrome before 34.0.1847.116, does not properly handle string data composed exclusively of whitespace characters, which allows remote attackers to cause a denial of service (out-of-bounds read) via a window.atob method call.

fstec логотип

BDU:2014-00126

fstec
около 11 лет назад

Уязвимость браузера Google Chrome, позволяющая злоумышленнику вызвать отказ в обслуживании

EPSS

Процентиль: 81%
0.01612
Низкий

5 Medium

CVSS2