chromium-browser: use-after-free in FFmpeg

Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via crafted Vorbis I data...

Google Chrome FFmpeg Memory Misreference Vulnerability

Google Chrome is a simple and efficiently designed web browsing tool developed by Google. oogle Chrome suffers from a memory misreference vulnerability in the implementation of the libavcodec/vorbisdec.c function, which allows an attacker to build a malicious WEB page and trick the user into...

CVE-2014-7937

CVE-2014-7937 affects FFmpeg’s libavcodec/vorbisdec.c; multiple off-by-one errors can lead to a denial of service (use-after-free) or other impact via crafted Vorbis I data. The issue is present in FFmpeg versions before 2.4.2 as used by Google Chrome before 40.0.2214.91. Remediation is to upgrad...

UBUNTU-CVE-2014-7937

Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via crafted Vorbis I data...