Описание
The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_protocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service (out-of-bounds read) via vectors that trigger use of a large buffer.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 35.0.1916.153-0ubuntu1~pkg1029 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [36.0.1985.125-0ubuntu1.14.04.0~pkg1029]] |
| lucid | ignored | end of life |
| precise | released | 36.0.1985.125-0ubuntu1.12.04.0~pkg897 |
| saucy | ignored | end of life |
| trusty | released | 36.0.1985.125-0ubuntu1.14.04.0~pkg1029 |
| trusty/esm | DNE | trusty was released [36.0.1985.125-0ubuntu1.14.04.0~pkg1029] |
| upstream | released | 35.0.1916.114 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.1.0~bzr640-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.0.4-0ubuntu0.14.04.1]] |
| lucid | DNE | |
| precise | DNE | |
| saucy | DNE | |
| trusty | released | 1.0.4-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.0.4-0ubuntu0.14.04.1] |
| upstream | released | 1.0.4 |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_protocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service (out-of-bounds read) via vectors that trigger use of a large buffer.
The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_ ...
The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_protocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service (out-of-bounds read) via vectors that trigger use of a large buffer.
Уязвимость браузера Google Chrome, позволяющая злоумышленнику вызвать отказ в обслуживании
EPSS
5 Medium
CVSS2