CVE-2014-3174

Priority
Description
modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in
Blink, as used in Google Chrome before 37.0.2062.94, does not properly
consider concurrent threads during attempts to update biquad filter
coefficients, which allows remote attackers to cause a denial of service
(read of uninitialized memory) via crafted API calls.
Assigned-to
ChrisCoulson
Notes
Package
Upstream:released (37.0.2062.94)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [37.0.2062.94-0ubuntu0.14.04.1~pkg1042])
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1.1.2-0ubuntu0.14.04.1])
More Information

Updated: 2020-03-18 22:20:16 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)