CVE-2014-1736Integer Overflow or Wraparound in Google Chrome

CWE-190Integer Overflow or Wraparound9 documents5 sources
Severity
7.5HIGHNVD
EPSS
2.3%
top 15.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedMay 6
Latest updateMay 17

Description

Integer overflow in api.cc in Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large length value.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome< 34.0.1847.131+1

🔴Vulnerability Details

2
GHSA
GHSA-qf53-7c4q-f3hr: Integer overflow in api2022-05-17
OSV
CVE-2014-1736: Integer overflow in api2014-05-06

📋Vendor Advisories

1
Red Hat
v8: integer overflow can lead to a remote denial of service2014-04-24

💬Community

3
Bugzilla
CVE-2014-1736 v8: integer overflow can lead to a remote denial of service [epel-6]2014-05-06
Bugzilla
CVE-2014-1736 v8: integer overflow can lead to a remote denial of service [fedora-all]2014-05-06
Bugzilla
CVE-2014-1736 v8: integer overflow can lead to a remote denial of service2014-05-06