Denial of Service Vulnerability in Google Chrome UI
CVE-2014-7941

Currently unrated

Key Information:

Vendor: Chromium
Status: Chromium
Vendor: CVE Published:; 22 January 2015

What is CVE-2014-7941?

A vulnerability exists in Google Chrome where the SelectionOwner::ProcessTarget function in the UI implementation improperly handles length values. This flaw allows remote attackers to execute a denial of service causing an out-of-bounds read by sending specially crafted X11 data to the affected browser versions prior to 40.0.2214.91.

References

http://secunia.com/advisories/62665

third-party-advisoryx_refsource_SECUNIA

http://googlechromereleases.blogspot.com/2015/01/stable-u...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/72288

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2015
Vulnerability Reserved
Oct 6, 2014

Chromium

What is CVE-2014-7941?

References

Timeline