VDB

CVE-2014-3157

CVE-2014-3157 PUBLISHED

Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that are too small for proper interaction with an underlying FFmpeg library.

EPSS 2.88% · 86.6th percentile

Risk Scores

EPSS Score
2.88%
86.6th percentile

Affected Products

VendorProductVersions
Ubuntu:14.04:LTSoxide-qt0, 1.0.0~bzr437-0ubuntu1, 1.0.0~bzr452-0ubuntu1
Ubuntu:14.04:LTSchromium-browser0, 31.0.1650.63-0ubuntu1~20131204.1, 32.0.1700.107-0ubuntu1~20140204.977.1

Timeline

  • Jun 11, 2014 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 3, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 8, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 25, 2023 EPSS Score
  • Jul 16, 2023 EPSS Score
  • Sep 7, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›