Vulnerabilities > CVE-2014-1732 - Use After Free vulnerability in Google Chrome
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Use-after-free vulnerability in browser/ui/views/speech_recognition_bubble_views.cc in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact via an INPUT element that triggers the presence of a Speech Recognition Bubble window for an incorrect duration.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family SuSE Local Security Checks NASL id OPENSUSE-2014-371.NASL description - Update to Chromium 34.0.1847.132 - Security update : - CVE-2014-1730: Type confusion in V8 - CVE-2014-1731: Type confusion in DOM - CVE-2014-1732: Use-after-free in Speech Recognition - CVE-2014-1733: Compiler bug in Seccomp-BPF - CVE-2014-1734: Various fixes from internal audits, fuzzing and other initiatives - CVE-2014-1735: Multiple vulnerabilities in V8 fixed in version 3.24.35.33 - Update to Chromium 34.0.1847.131 - Bugfixes last seen 2020-06-05 modified 2014-06-13 plugin id 75361 published 2014-06-13 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/75361 title openSUSE Security Update : chromium (openSUSE-SU-2014:0669-1) NASL family Debian Local Security Checks NASL id DEBIAN_DSA-2920.NASL description Several vulnerabilities have been discovered in the chromium web browser. - CVE-2014-1730 A type confusion issue was discovered in the v8 JavaScript library. - CVE-2014-1731 John Butler discovered a type confusion issue in the WebKit/Blink document object model implementation. - CVE-2014-1732 Khalil Zhani discovered a use-after-free issue in the speech recognition feature. - CVE-2014-1733 Jed Davis discovered a way to bypass the seccomp-bpf sandbox. - CVE-2014-1734 The Google Chrome development team discovered and fixed multiple issues with potential security impact. - CVE-2014-1735 The Google Chrome development team discovered and fixed multiple issues in version 3.24.35.33 of the v8 JavaScript library. - CVE-2014-1736 SkyLined discovered an integer overlflow issue in the v8 JavaScript library. last seen 2020-03-17 modified 2014-05-05 plugin id 73856 published 2014-05-05 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/73856 title Debian DSA-2920-1 : chromium-browser - security update NASL family Windows NASL id GOOGLE_CHROME_34_0_1847_131.NASL description The version of Google Chrome installed on the remote host is a version prior to 34.0.1847.131. It is, therefore, affected by the following vulnerabilities : - A buffer overflow error exists related to the included version of Flash Player. (CVE-2014-0515) - Type confusion errors exist related to the V8 JavaScript engine and DOM handling. (CVE-2014-1730, CVE-2014-1731) - A use-after-free error exists related to speech recognition processing. (CVE-2014-1732) - An error exists related to compiling in last seen 2020-06-01 modified 2020-06-02 plugin id 73710 published 2014-04-25 reporter This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/73710 title Google Chrome < 34.0.1847.131 Multiple Vulnerabilities NASL family SuSE Local Security Checks NASL id OPENSUSE-2014-370.NASL description - Update to Chromium 34.0.1847.132 - Security update : - CVE-2014-1730: Type confusion in V8 - CVE-2014-1731: Type confusion in DOM - CVE-2014-1732: Use-after-free in Speech Recognition - CVE-2014-1733: Compiler bug in Seccomp-BPF - CVE-2014-1734: Various fixes from internal audits, fuzzing and other initiatives - CVE-2014-1735: Multiple vulnerabilities in V8 fixed in version 3.24.35.33 - Update to Chromium 34.0.1847.131 - Bugfixes last seen 2020-06-05 modified 2014-06-13 plugin id 75360 published 2014-06-13 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/75360 title openSUSE Security Update : chromium (openSUSE-SU-2014:0668-1) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201408-16.NASL description The remote host is affected by the vulnerability described in GLSA-201408-16 (Chromium: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could conduct a number of attacks which include: cross site scripting attacks, bypassing of sandbox protection, potential execution of arbitrary code with the privileges of the process, or cause a Denial of Service condition. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 77460 published 2014-08-30 reporter This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/77460 title GLSA-201408-16 : Chromium: Multiple vulnerabilities NASL family MacOS X Local Security Checks NASL id MACOSX_GOOGLE_CHROME_34_0_1847_131.NASL description The version of Google Chrome installed on the remote Mac OS X host is a version prior to 34.0.1847.131. It is, therefore, affected by the following vulnerabilities : - A buffer overflow error exists related to the included version of Flash Player. (CVE-2014-0515) - Type confusion errors exist related to the V8 JavaScript engine and DOM handling. (CVE-2014-1730, CVE-2014-1731) - A use-after-free error exists related to speech recognition processing. (CVE-2014-1732) - An error exists related to compiling in last seen 2020-06-01 modified 2020-06-02 plugin id 73711 published 2014-04-25 reporter This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/73711 title Google Chrome < 34.0.1847.131 Multiple Vulnerabilities (Mac OS X) NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_7CF25A0CD03111E3947B00262D5ED8EE.NASL description Google Chrome Releases reports (belatedly) : 9 security fixes in this release, including : - [354967] High CVE-2014-1730: Type confusion in V8. Credit to Anonymous. - [349903] High CVE-2014-1731: Type confusion in DOM. Credit to John Butler. - [359802] High CVE-2014-1736: Integer overflow in V8. Credit to SkyLined working with HP last seen 2020-06-01 modified 2020-06-02 plugin id 73793 published 2014-05-01 reporter This script is Copyright (C) 2014 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/73793 title FreeBSD : chromium -- multiple vulnerabilities (7cf25a0c-d031-11e3-947b-00262d5ed8ee)
References
- http://secunia.com/advisories/58301
- http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html
- https://code.google.com/p/chromium/issues/detail?id=352851
- http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html
- http://security.gentoo.org/glsa/glsa-201408-16.xml
- http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html
- http://www.debian.org/security/2014/dsa-2920
- https://src.chromium.org/viewvc/chrome?revision=261737&view=revision