Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-1294

Use-after-free vulnerability in the SkMatrix::invertNonIdentity function in core/SkMatrix.cpp in Skia, as used in Google Chrome before 45.0.2454.85, allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering the use of matrix elements that lead to an infinite result during an inversion calculation.

Related bugs and status

CVE-2015-1294 (Candidate) is related to these bugs:

Bug #1490237: Google image search not working

Summary				In	Importance	Status
	1490237	Google image search not working		chromium-browser (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://googlechromerel...
CONFIRM: https://code.google.co...
CONFIRM: https://codereview.chr...
GENTOO: GLSA-201603-09
SUSE: openSUSE-SU-2015:1873
DEBIAN: DSA-3351
REDHAT: RHSA-2015:1712
SUSE: openSUSE-SU-2015:1586
SECTRACK: 1033472