DescriptionHeap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that are too small for proper interaction with an underlying FFmpeg library.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- openSUSE-SU-2014:0982-1, published Fri Dec 8 15:48:58 2023
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Leap 15.0|| ||Patchnames: |
openSUSE Leap 15.0 GA chromium-66.0.3359.170-lp150.1.1
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA chromedriver-55.0.2883.75-3.1
openSUSE Tumbleweed GA ungoogled-chromium-113.0.5672.92-1.1
SUSE Timeline for this CVECVE page created: Wed Jun 11 14:16:11 2014
CVE page last modified: Fri Dec 8 17:03:48 2023