CVE-2014-1514

Priority
Description
vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x
before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not
validate the length of the destination array before a copy operation, which
allows remote attackers to execute arbitrary code or cause a denial of
service (out-of-bounds write and application crash) by triggering incorrect
use of the TypedArrayObject class.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (28.0)
Package
Priority: Low
Upstream:released (24.4.0)
More Information

Updated: 2020-09-10 02:56:18 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)