CVE-2014-1746

Publication date 21 May 2014

Last updated 24 July 2024


Ubuntu priority

The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_protocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service (out-of-bounds read) via vectors that trigger use of a large buffer.

Status

Package Ubuntu Release Status
chromium-browser 14.04 LTS trusty
Fixed 36.0.1985.125-0ubuntu1.14.04.0~pkg1029
13.10 saucy Ignored end of life
12.04 LTS precise
Fixed 36.0.1985.125-0ubuntu1.12.04.0~pkg897
10.04 LTS lucid Ignored end of life
oxide-qt 14.04 LTS trusty
Fixed 1.0.4-0ubuntu0.14.04.1
13.10 saucy Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Not in release