CVE-2015-1212 — Out-of-bounds Write in Google Chrome

CWE-787 — Out-of-bounds Write CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer14 documents8 sources

Severity

7.5HIGHNVD

EPSS

0.5%

top 35.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Canonical Ubuntu Linux Opensuse +5 more

Timeline

PublishedFeb 6

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in Google Chrome before 40.0.2214.111 on Windows, OS X, and Linux and before 40.0.2214.109 on Android allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages5 packages

▶NVDgoogle/chrome< 40.0.2214.109+2

▶NVDredhat/enterprise_linux_server6.0

▶NVDredhat/enterprise_linux_desktop6.0

▶NVDredhat/enterprise_linux_workstation6.0

▶NVDopensuse/opensuse13.1, 13.2+1

Also affects: Ubuntu Linux 14.04, 14.10, Enterprise Linux 6.6

🔴Vulnerability Details

GHSA

GHSA-f6r4-gh32-pq92: Array index error in the MidiManagerUsb::DispatchSendMidiData function in media/midi/midi_manager_usb↗2022-05-17

▶

GHSA

GHSA-j93m-fj9q-jg26: Multiple unspecified vulnerabilities in Google Chrome before 40↗2022-05-13

▶

OSV

CVE-2015-1232: Array index error in the MidiManagerUsb::DispatchSendMidiData function in media/midi/midi_manager_usb↗2015-03-09

▶

CVEList

CVE-2015-1232: Array index error in the MidiManagerUsb::DispatchSendMidiData function in media/midi/midi_manager_usb↗2015-03-09

▶

OSV

oxide-qt vulnerabilities↗2015-02-10

▶

💥Exploits & PoCs

Exploit-DB

Arab Portal 3 - SQL Injection↗2015-07-13

▶

📋Vendor Advisories

Red Hat

chromium-browser: Out-of-bounds write in media↗2015-03-03

▶

Ubuntu

Oxide vulnerabilities↗2015-02-10

▶

Red Hat

chromium-browser: various security fixes in Chrome 40.0.2214.111↗2015-02-04

▶

💬Community

Bugzilla

CVE-2015-1212 chromium-browser: various security fixes in Chrome 40.0.2214.111↗2015-02-06

▶