Google

Chrome

3758 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-7945

  • EPSS 1.68%
  • Veröffentlicht 22.01.2015 22:59:25
  • Zuletzt bearbeitet 12.04.2025 10:46:40

OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, jp2.c, and t2.c.

5

CVE-2014-7944

  • EPSS 1.68%
  • Veröffentlicht 22.01.2015 22:59:24
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The sycc422_to_rgb function in fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome before 40.0.2214.91, does not properly handle odd values of image width, which allows remote attackers to cause a denial of service (out-of-bounds r...

5

CVE-2014-7943

  • EPSS 1.71%
  • Veröffentlicht 22.01.2015 22:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

7.5

CVE-2014-7942

  • EPSS 2.36%
  • Veröffentlicht 22.01.2015 22:59:22
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Fonts implementation in Google Chrome before 40.0.2214.91 does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

5

CVE-2014-7941

  • EPSS 2.25%
  • Veröffentlicht 22.01.2015 22:59:21
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SelectionOwner::ProcessTarget function in ui/base/x/selection_owner.cc in the UI implementation in Google Chrome before 40.0.2214.91 uses an incorrect data type for a certain length value, which allows remote attackers to cause a denial of servic...

4.3

CVE-2014-7939

  • EPSS 0.69%
  • Veröffentlicht 22.01.2015 22:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to HTTP responses that lack an "X...

7.5

CVE-2014-7940

  • EPSS 2.15%
  • Veröffentlicht 22.01.2015 22:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to...

7.5

CVE-2014-7938

  • EPSS 2.36%
  • Veröffentlicht 22.01.2015 22:59:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Fonts implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

7.5

CVE-2014-7937

  • EPSS 2.21%
  • Veröffentlicht 22.01.2015 22:59:18
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted Vorb...

6.8

CVE-2014-7936

  • EPSS 2.33%
  • Veröffentlicht 22.01.2015 22:59:17
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the ZoomBubbleView::Close function in browser/ui/views/location_bar/zoom_bubble_view.cc in the Views implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a denial of service or possibly ...