EUVD-2015-1403

Malware in sbrugna...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.

The platform/fonts/shaping/HarfBuzzShaper.cpp file of Google Chrome browser contains errors related to incorrect initialization of long fields. As a result, the bug may cause a service failure through the use of a specially crafted Unicode-formatted text message...

chromium-browser: Uninitialized value in Blink.

platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted Unicode text...

Code injection

platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted Unicode text...

CVE-2015-1262

CVE-2015-1262 affects Blink (HarfBuzzShaper.cpp) in Google Chrome before 43.0.2357.65, where a width field is not initialized. This can lead to a denial of service or potentially other impact via crafted Unicode text. Affected software is Chrome (Blink) prior to the fixed build; remediation is to...