Home > Vulnerability Database > CVE-2014-3175

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2014-3175

Good to know:

Date: August 26, 2014

Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors, related to the load_truetype_glyph function in truetype/ttgload.c in FreeType and other functions in other components.

Language: C++

Severity Score

9.8

Related Resources (54)

Url: http://secunia.com/advisories/60424

Url: http://www.securityfocus.com/bid/69402

Url: https://code.google.com/p/chromium/issues/detail?id=382639

Url: https://code.google.com/p/chromium/issues/detail?id=390176

Url: https://code.google.com/p/chromium/issues/detail?id=379656

Url: https://code.google.com/p/chromium/issues/detail?id=387371

Url: http://secunia.com/advisories/60268

Url: https://code.google.com/p/chromium/issues/detail?id=387315

Url: https://code.google.com/p/chromium/issues/detail?id=368978

Url: https://code.google.com/p/chromium/issues/detail?id=389216

Url: https://code.google.com/p/chromium/issues/detail?id=382820

Url: https://code.google.com/p/chromium/issues/detail?id=395972

Url: https://code.google.com/p/chromium/issues/detail?id=364062

Url: https://code.google.com/p/chromium/issues/detail?id=388771

Url: http://security.gentoo.org/glsa/glsa-201408-16.xml

Url: https://code.google.com/p/chromium/issues/detail?id=350782

Url: http://www.debian.org/security/2014/dsa-3039

Url: https://code.google.com/p/chromium/issues/detail?id=357452

Url: https://code.google.com/p/chromium/issues/detail?id=381244

Url: http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00027.html

Url: https://nvd.nist.gov/vuln/detail/CVE-2014-3175

Url: https://code.google.com/p/chromium/issues/detail?id=366687

Url: https://code.google.com/p/chromium/issues/detail?id=383703

Url: https://code.google.com/p/chromium/issues/detail?id=381521

Url: https://code.google.com/p/chromium/issues/detail?id=382656

Url: https://code.google.com/p/chromium/issues/detail?id=389570

Url: https://code.google.com/p/chromium/issues/detail?id=396255

Url: https://code.google.com/p/chromium/issues/detail?id=337572

Url: https://code.google.com/p/chromium/issues/detail?id=382243

Url: http://googlechromereleases.blogspot.com/2014/08/stable-channel-update_26.html

Url: https://code.google.com/p/chromium/issues/detail?id=382240

Url: https://code.google.com/p/chromium/issues/detail?id=387016

Url: https://code.google.com/p/chromium/issues/detail?id=393938

Url: https://code.google.com/p/chromium/issues/detail?id=384662

Url: https://code.google.com/p/chromium/issues/detail?id=382242

Url: https://code.google.com/p/chromium/issues/detail?id=381031

Url: https://code.google.com/p/chromium/issues/detail?id=382241

Url: https://code.google.com/p/chromium/issues/detail?id=382606

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/95475

Url: https://code.google.com/p/chromium/issues/detail?id=389316

Url: http://www.securitytracker.com/id/1030767

Url: https://code.google.com/p/chromium/issues/detail?id=382601

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2014-3175

Url: https://code.google.com/p/chromium/issues/detail?id=397258

Url: https://code.google.com/p/chromium/issues/detail?id=372410

Url: https://code.google.com/p/chromium/issues/detail?id=394026

Url: https://code.google.com/p/chromium/issues/detail?id=389285

Url: https://crbug.com/406143

Url: https://code.google.com/p/chromium/issues/detail?id=367991

Url: https://code.google.com/p/chromium/issues/detail?id=149871

Url: https://code.google.com/p/chromium/issues/detail?id=389280

Url: https://code.google.com/p/chromium/issues/detail?id=372413

Url: https://code.google.com/p/chromium/issues/detail?id=390304

Url: https://www.mend.io/vulnerability-database/CVE-2014-3175

Severity Score

9.8

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Top Fix

Upgrade Version

Upgrade to version 37.0.2019.0

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	10.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE
Additional information:

Do you need more information?

Contact Us