CVE-2014-1710Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome OS

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.7%
top 27.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome OS
Timeline
PublishedMar 16
Latest updateMay 17

Description

The AsyncPixelTransfersCompletedQuery::End function in gpu/command_buffer/service/query_manager.cc in Google Chrome, as used in Google Chrome OS before 33.0.1750.152, does not check whether a certain position is within the bounds of a shared-memory segment, which allows remote attackers to cause a denial of service (GPU command-buffer memory corruption) or possibly have unspecified other impact via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome_os33.0.1750.149+10

🔴Vulnerability Details

2
GHSA
GHSA-rjp2-cf2f-33w2: The AsyncPixelTransfersCompletedQuery::End function in gpu/command_buffer/service/query_manager2022-05-17
CVEList
CVE-2014-1710: The AsyncPixelTransfersCompletedQuery::End function in gpu/command_buffer/service/query_manager2014-03-16
CVE-2014-1710 — Google Chrome OS vulnerability | cvebase