Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2015-1258

Published: 20/05/2015 Updated: 07/11/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Google Chrome prior to 43.0.2357.65 relies on libvpx code that was not built with an appropriate --size-limit value, which allows remote malicious users to trigger a negative value for a size field, and consequently cause a denial of service or possibly have unspecified other impact, via a crafted frame size in VP9 video data.

Vulnerable Product Search on Vulmon Subscribe to Product

debian debian linux 8.0

google chrome

Vendor Advisories

Ubuntu Security Notice: oxide-qt vulnerabilities
Several security issues were fixed in Oxide ...
Debian CVElist Bug Report Logs: libvpx: CVE-2017-0641
Debian Bug report logs - #871931 libvpx: CVE-2017-0641 Package: src:libvpx; Maintainer for src:libvpx is Debian Multimedia Maintainers <pkg-multimedia-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 12 Aug 2017 17:03:01 UTC Severity: minor Tags: security, upstrea ...

Github Repositories

https://github.com/roachmd/anchorenginehowto

Anchore Engine How To Guide Purpose: I started in the early days of docker Back then saying we are using docker now was enough to get you past the securtiy team But today not so much Security teams have caught up and now so have the tools Mature pipelines now include some sort of security scan Looking around for a free scanner with an enterprise upgrade option is few a

References

CWE-189http://lists.opensuse.org/opensuse-updates/2015-05/msg00091.htmlhttp://googlechromereleases.blogspot.com/2015/05/stable-channel-update_19.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/167428.htmlhttps://codereview.chromium.org/1106303002https://security.gentoo.org/glsa/201506-04http://lists.opensuse.org/opensuse-updates/2015-11/msg00015.htmlhttp://www.securitytracker.com/id/1032375http://www.debian.org/security/2015/dsa-3267https://code.google.com/p/chromium/issues/detail?id=450939http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168803.htmlhttp://www.securityfocus.com/bid/74723http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166975.htmlhttps://nvd.nist.govhttps://usn.ubuntu.com/2610-1/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802template injectionCVE-2024-0044code injectionCVE-2024-35474CVE-2024-27857CVE-2024-23251CVE-2024-23692physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook