Your submission was sent successfully! Close

CVE-2015-1257

Published: 20 May 2015

platform/graphics/filters/FEColorMatrix.cpp in the SVG implementation in Blink, as used in Google Chrome before 43.0.2357.65, does not properly handle an insufficient number of values in an feColorMatrix filter, which allows remote attackers to cause a denial of service (container overflow) or possibly have unspecified other impact via a crafted document.

Priority

Medium

Status

Package Release Status
chromium-browser
Launchpad, Ubuntu, Debian
Upstream
Released (43.0.2357.65)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [43.0.2357.81-0ubuntu0.14.04.1.1089])
oxide-qt
Launchpad, Ubuntu, Debian
Upstream
Released (1.7.8)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1.7.8-0ubuntu0.14.04.1])