← Voltar para CVEs

CVE-2014-3174

N/A

Descricao

modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 37.0.2062.94, does not properly consider concurrent threads during attempts to update biquad filter coefficients, which allows remote attackers to cause a denial of service (read of uninitialized memory) via crafted API calls.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado8/27/2014

Ultima modificacao4/12/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

google:chrome

Fraquezas (CWE)

CWE-119

Referencias

http://googlechromereleases.blogspot.com/2014/08/stable-channel-update_26.html(chrome-cve-admin@google.com)

http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00027.html(chrome-cve-admin@google.com)

http://secunia.com/advisories/60268(chrome-cve-admin@google.com)

http://secunia.com/advisories/60424(chrome-cve-admin@google.com)

http://secunia.com/advisories/61482(chrome-cve-admin@google.com)

http://security.gentoo.org/glsa/glsa-201408-16.xml(chrome-cve-admin@google.com)

http://www.debian.org/security/2014/dsa-3039(chrome-cve-admin@google.com)

http://www.securityfocus.com/bid/69407(chrome-cve-admin@google.com)

http://www.securitytracker.com/id/1030767(chrome-cve-admin@google.com)

https://crbug.com/389219(chrome-cve-admin@google.com)

https://exchange.xforce.ibmcloud.com/vulnerabilities/95474(chrome-cve-admin@google.com)

https://src.chromium.org/viewvc/blink?revision=177250&view=revision(chrome-cve-admin@google.com)

http://googlechromereleases.blogspot.com/2014/08/stable-channel-update_26.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00027.html(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/60268(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/60424(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/61482(af854a3a-2127-422b-91ae-364da2661108)

http://security.gentoo.org/glsa/glsa-201408-16.xml(af854a3a-2127-422b-91ae-364da2661108)

http://www.debian.org/security/2014/dsa-3039(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/69407(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1030767(af854a3a-2127-422b-91ae-364da2661108)

https://crbug.com/389219(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/95474(af854a3a-2127-422b-91ae-364da2661108)

https://src.chromium.org/viewvc/blink?revision=177250&view=revision(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.