CVE-2014-7937

NONECVSS 0.0

0.0

Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted Vorbis I data.

🔗 References (28)

chrome-cve-admin@googlehttp://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=8c50704ebf1777bee76772c4835d9760b3721057
chrome-cve-admin@googlehttp://googlechromereleases.blogspot.com/2015/01/stable-update.html
chrome-cve-admin@googlehttp://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html
chrome-cve-admin@googlehttp://rhn.redhat.com/errata/RHSA-2015-0093.html
chrome-cve-admin@googlehttp://secunia.com/advisories/62383
chrome-cve-admin@googlehttp://secunia.com/advisories/62575
chrome-cve-admin@googlehttp://secunia.com/advisories/62665
chrome-cve-admin@googlehttp://security.gentoo.org/glsa/glsa-201502-13.xml
chrome-cve-admin@googlehttp://www.securityfocus.com/bid/72288
chrome-cve-admin@googlehttp://www.securitytracker.com/id/1031623
chrome-cve-admin@googlehttp://www.ubuntu.com/usn/USN-2476-1
chrome-cve-admin@googlehttps://chromium.googlesource.com/chromium/third_party/ffmpeg/+/d4608b7c83f56b17f14fdd94990341f62bb52f92
chrome-cve-admin@googlehttps://code.google.com/p/chromium/issues/detail?id=419060
chrome-cve-admin@googlehttps://security.gentoo.org/glsa/201603-06
af854a3a-2127-422b-91ae-364da2661108http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=8c50704ebf1777bee76772c4835d9760b3721057

Is Your Infrastructure Affected by CVE-2014-7937?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2014-7937

📅 Published

🔄 Last Modified

🔗 References (28)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2014-7937?