Computer Security
[EN] securityvulns.ru no-pyccku


CVECVE-2014-7940
StatusCandidate
DescriptionThe collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted character sequence.
Severity
High
CVSS score7,5
CVSS vector(AV:N/AC:L/Au:N/C:P/I:P/A:P)
PhaseAssigned (06.10.2014)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-7940
ReferencesSECUNIA : 62575
 BID : 72288
 GENTOO : GLSA-201502-13
 CONFIRM : http://advisories.mageia.org/MGASA-2015-0047.html
 CONFIRM : http://googlechromereleases.blogspot.com/2015/01/s...
 CONFIRM : https://chromium.googlesource.com/chromium/deps/ic...
 CONFIRM : https://chromium.googlesource.com/chromium/src.git...
 CONFIRM : https://code.google.com/p/chromium/issues/detail?i...
 SUSE : openSUSE-SU-2015:0441
 REDHAT : RHSA-2015:0093
 UBUNTU : USN-2476-1
SecurityVulns:libicu multiple security vulnerabilities
 Google Chrome / Chromium multiple security vulnerabilities
 Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod