CVE-2014-1733 (retired)

Priority
Description
The PointerCompare function in codegen.cc in Seccomp-BPF, as used in Google
Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on
Linux, does not properly merge blocks, which might allow remote attackers
to bypass intended sandbox restrictions by leveraging renderer access.
Notes
 chrisccoulson> Bug affects seccomp sandbox, which is used for the GPU
  process in Chrome. Oxide doesn't have a GPU process
Package
Upstream:released (34.0.1847.132)
Ubuntu 14.04 LTS (Trusty Tahr):released (36.0.1985.125-0ubuntu1.14.04.0~pkg1029)
Package
Upstream:not-affected
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
More Information

Updated: 2019-03-26 12:12:45 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)