CVE-2014-1557 — Code Injection in Mozilla Firefox

CWE-94 — Code Injection CWE-672 — Operation on a Resource after Expiration or Release10 documents6 sources

Severity

9.3CRITICALNVD

OSV10.0

EPSS

2.4%

top 14.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Thunderbird Debian Linux +2 more

Timeline

PublishedJul 23

Latest updateMay 17

Description

The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, does not properly handle the discarding of image data during function execution, which allows remote attackers to execute arbitrary code by triggering prolonged image scaling, as demonstrated by scaling of a high-quality image.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages6 packages

▶Ubuntumozilla/firefox< 31.0+build1-0ubuntu0.14.04.1

▶NVDmozilla/firefox30.0+5

▶NVDmozilla/firefox_esr5 versions+4

▶Ubuntumozilla/thunderbird< 1:31.0+build1-0ubuntu0.14.04.1

▶NVDmozilla/thunderbird24.6+8

Also affects: Debian Linux 6.0, 7.0

🔴Vulnerability Details

GHSA

GHSA-7r7x-g5gw-9rgv: The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31↗2022-05-17

▶

OSV

firefox vulnerabilities↗2014-07-22

▶

OSV

thunderbird vulnerabilities↗2014-07-22

▶

OSV

CVE-2014-1557: The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31↗2014-07-22

▶

📋Vendor Advisories

Red Hat

Mozilla: Crash in Skia library when scaling high quality images (MFSA 2014-64)↗2014-07-22

▶

Ubuntu

Thunderbird vulnerabilities↗2014-07-22

▶

Ubuntu

Firefox vulnerabilities↗2014-07-22

▶

💬Community

Bugzilla

CVE-2014-1557 Mozilla: Crash in Skia library when scaling high quality images (MFSA 2014-64)↗2014-07-21

▶

Bugzilla

CVE-2013-1557 OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329)↗2013-04-16

▶