Integer overflow in the SoftwareFrameManager::SwapToNewFrame function in content/browser/renderer_host/software_frame_manager.cc in the software compositor in Google Chrome prior to 34.0.1847.116 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted mapping of a large amount of renderer memory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome |