VDB
DEBIAN-CVE-2014-1578
DEBIAN-CVE-2014-1578
PUBLISHED
CVSS 9.300000190734863 CRITICAL
The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly execute arbitrary code via WebM frames with invalid tile sizes that are improperly handled in buffering operations during video playback.
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | libvpx | 0, 0, 0 |
| Debian:12 | libvpx | 0, 0, 0 |
| Debian:13 | libvpx | 0, 0, 0 |
| Debian:11 | libvpx | 0, 0, 0 |
Timeline
- Oct 15, 2014 CVE Published
- Apr 28, 2026 CVE Updated