CVE-2015-1257 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources

Severity

7.5HIGHNVD

EPSS

2.1%

top 15.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Debian Linux

Timeline

PublishedMay 20

Latest updateMay 17

Description

platform/graphics/filters/FEColorMatrix.cpp in the SVG implementation in Blink, as used in Google Chrome before 43.0.2357.65, does not properly handle an insufficient number of values in an feColorMatrix filter, which allows remote attackers to cause a denial of service (container overflow) or possibly have unspecified other impact via a crafted document.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDgoogle/chrome42.0.2311.152

Also affects: Debian Linux 8.0

🔴Vulnerability Details

GHSA

GHSA-fvg9-44pc-6w5x: platform/graphics/filters/FEColorMatrix↗2022-05-17

▶

OSV

oxide-qt vulnerabilities↗2015-05-21

▶

OSV

CVE-2015-1257: platform/graphics/filters/FEColorMatrix↗2015-05-20

▶

📋Vendor Advisories

Ubuntu

Oxide vulnerabilities↗2015-05-21

▶

Red Hat

chromium-browser: Container-overflow in SVG.↗2015-05-19

▶

💬Community

Bugzilla

CVE-2015-1257 chromium-browser: Container-overflow in SVG.↗2015-05-20

▶