PT-2014-4308 · Google · Google Chrome

Publicado

2014-03-16

Atualizado

2014-03-26

CVE-2014-1710

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Google Chrome OS versions prior to 33.0.1750.152

Description The issue is related to the AsyncPixelTransfersCompletedQuery::End function in Google Chrome, which does not properly check the bounds of a shared-memory segment. This can be exploited by remote attackers to cause a denial of service, resulting in GPU command-buffer memory corruption, or potentially have other unspecified impacts.

Recommendations For Google Chrome OS versions prior to 33.0.1750.152, update to version 33.0.1750.152 or later to resolve the issue.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2014-1710

Produtos afetados

Google Chrome

PT-2014-4308 · Google · Google Chrome

CVE-2014-1710

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5