CVE-2015-8480 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources

Severity

10.0CRITICALNVD

EPSS

0.7%

top 27.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome

Timeline

PublishedDec 6

Latest updateMay 17

Description

The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool.cc in Google Chrome before 47.0.2526.73 does not initialize memory for a video-frame data structure, which might allow remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact by leveraging improper interaction with the vp3_h_loop_filter_c function in libavcodec/vp3dsp.c in FFmpeg.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDgoogle/chrome46.0.2490.86

🔴Vulnerability Details

GHSA

GHSA-3h32-4mhh-8v2f: The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool↗2022-05-17

▶

OSV

CVE-2015-8480: The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool↗2015-12-06

▶

📋Vendor Advisories

Red Hat

chromium-browser: Various fixes from internal audits↗2015-12-01

▶

💬Community

Bugzilla

CVE-2015-6787 CVE-2015-8479 CVE-2015-8480 chromium-browser: Various fixes from internal audits↗2015-12-02

▶