← Back

CVE-2014-7943

nvd nist
Published: Jan 22, 2015Modified: May 6, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Affected (10)

Show all products
Canonical: Ubuntu Linux · Opensuse: Opensuse · Redhat: Enterprise Linux Desktop Supplementary, Enterprise Linux Server Supplementary, Enterprise Linux Server Supplementary Eus, Enterprise Linux Workstation Supplementary · Chromium: Chromium · Google: Chrome
Canonical
1 product
Ubuntu Linux
Opensuse
1 product
Opensuse
Redhat
4 products
Enterprise Linux Desktop Supplementary
Enterprise Linux Server Supplementary
Enterprise Linux Server Supplementary Eus
Enterprise Linux Workstation Supplementary
Chromium
1 product
Chromium
Google
1 product
Chrome
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 14.04
Ubuntu Linux
Version 14.10
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Opensuse
Opensuse
Version 13.1
Opensuse
Version 13.2
Configuration C
4 vulnerable
Vulnerable SoftwareAffected Versions
Enterprise Linux Desktop Supplementary
Version 6.0
Enterprise Linux Server Supplementary
Version 6.0
Enterprise Linux Server Supplementary Eus
Version 6.6.z
Enterprise Linux Workstation Supplementary
Version 6.0
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Chromium
Version 40.0.2214.110
Configuration E
1 vulnerable
Vulnerable SoftwareAffected Versions
Chrome
Up to 40.0.2214.85

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (22)

Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: chrome-cve-admin@google.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.