CVE-2014-3157

Publication date 11 June 2014

Last updated 24 July 2024


Ubuntu priority

Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that are too small for proper interaction with an underlying FFmpeg library.

Status

Package Ubuntu Release Status
chromium-browser 14.04 LTS trusty
Fixed 36.0.1985.125-0ubuntu1.14.04.0~pkg1029
13.10 saucy Ignored end of life
12.04 LTS precise
Fixed 36.0.1985.125-0ubuntu1.12.04.0~pkg897
10.04 LTS lucid Ignored end of life
oxide-qt 14.04 LTS trusty
Fixed 1.0.4-0ubuntu0.14.04.1
13.10 saucy Not in release
12.04 LTS precise Not in release
10.04 LTS lucid Not in release