CVE-2014-9647
Publication date 27 January 2015
Last updated 24 July 2024
Ubuntu priority
Use-after-free vulnerability in PDFium, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to fpdfsdk/src/fpdfview.cpp and fpdfsdk/src/fsdk_mgr.cpp, a different vulnerability than CVE-2015-1205.
Status
Package | Ubuntu Release | Status |
---|---|---|
chromium-browser | ||
14.04 LTS trusty |
Fixed 40.0.2214.94-0ubuntu0.14.04.1.1068
|
|
oxide-qt | ||
14.04 LTS trusty | Not in release | |
References
Other references
- https://pdfium.googlesource.com/pdfium/+/facd0157ce975158da1659fb58a16c1308bd553b
- https://code.google.com/p/chromium/issues/detail?id=449894
- https://code.google.com/p/chromium/issues/detail?id=410326
- http://googlechromereleases.blogspot.com/2015/01/stable-update.html
- https://www.cve.org/CVERecord?id=CVE-2014-9647