Denial of Service Vulnerability in Google Chrome by Google
CVE-2014-7942

Currently unrated

Key Information:

Vendor: Chromium
Status: Chromium
Vendor: CVE Published:; 22 January 2015

What is CVE-2014-7942?

The Fonts implementation in Google Chrome prior to version 40.0.2214.91 contains a flaw that fails to initialize memory associated with a data structure. This oversight can be exploited by remote attackers to trigger a denial of service, causing the browser to become unresponsive. Attackers may leverage this vulnerability through unspecified vectors, which could lead to further, potentially unknown impacts on users.

References

http://secunia.com/advisories/62665

third-party-advisoryx_refsource_SECUNIA

https://code.google.com/p/chromium/issues/detail?id=426762

x_refsource_CONFIRM

http://googlechromereleases.blogspot.com/2015/01/stable-u...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2015
Vulnerability Reserved
Oct 6, 2014

Chromium

What is CVE-2014-7942?

References

Timeline