Published: 26/04/2014 Updated: 07/11/2023

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The PointerCompare function in codegen.cc in Seccomp-BPF, as used in Google Chrome prior to 34.0.1847.131 on Windows and OS X and prior to 34.0.1847.132 on Linux, does not properly merge blocks, which might allow remote malicious users to bypass intended sandbox restrictions by leveraging renderer access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome

Several vulnerabilities have been discovered in the chromium web browser CVE-2014-1730 A type confusion issue was discovered in the v8 javascript library CVE-2014-1731 John Butler discovered a type confusion issue in the WebKit/Blink document object model implementation CVE-2014-1732 Khalil Zhani discovered a use-after-free issu ...

CWE-20 http://secunia.com/advisories/58301 http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html https://code.google.com/p/chromium/issues/detail?id=351103 http://security.gentoo.org/glsa/glsa-201408-16.xml http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html http://www.debian.org/security/2014/dsa-2920 https://src.chromium.org/viewvc/chrome?revision=260157&view=revision https://nvd.nist.gov https://www.debian.org/security/./dsa-2920

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-1733

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect