{"id":"USN-2476-1","summary":"oxide-qt vulnerabilities","details":"Several memory corruption bugs were discovered in ICU. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit these to cause a denial of service via renderer crash\nor execute arbitrary code with the privileges of the sandboxed render\nprocess. (CVE-2014-7923, CVE-2014-7926)\n\nA use-after-free was discovered in the IndexedDB implementation. If a user\nwere tricked in to opening a specially crafted website, an attacker could\npotentially exploit this to cause a denial of service via application\ncrash or execute arbitrary code with the privileges of the user invoking\nthe program. (CVE-2014-7924)\n\nA use-after free was discovered in the WebAudio implementation in Blink.\nIf a user were tricked in to opening a specially crafted website, an\nattacker could potentially exploit this to cause a denial of service via\nrenderer crash or execute arbitrary code with the privileges of the\nsandboxed render process. (CVE-2014-7925)\n\nSeveral memory corruption bugs were discovered in V8. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit these to cause a denial of service via renderer crash\nor execute arbitrary code with the privileges of the sandboxed render\nprocess. (CVE-2014-7927, CVE-2014-7928, CVE-2014-7931)\n\nSeveral use-after free bugs were discovered in the DOM implementation in\nBlink. If a user were tricked in to opening a specially crafted website,\nan attacker could potentially exploit these to cause a denial of service\nvia renderer crash or execute arbitrary code with the privileges of the\nsandboxed render process. (CVE-2014-7929, CVE-2014-7930, CVE-2014-7932,\nCVE-2014-7934)\n\nA use-after free was discovered in FFmpeg. If a user were tricked in to\nopening a specially crafted website, an attacker could potentially exploit\nthis to cause a denial of service via renderer crash or execute arbitrary\ncode with the privileges of the sandboxed render process. (CVE-2014-7933)\n\nMultiple off-by-one errors were discovered in FFmpeg. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit this to cause a denial of service via renderer crash\nor execute arbitrary code with the privileges of the sandboxed render\nprocess. (CVE-2014-7937)\n\nA memory corruption bug was discovered in the fonts implementation. If a\nuser were tricked in to opening a specially crafted website, an attacker\ncould potentially exploit this to cause a denial of service via renderer\ncrash or execute arbitrary code with the privileges of the sandboxed\nrender process. (CVE-2014-7938)\n\nIt was discovered that ICU did not initialize memory for a data structure\ncorrectly. If a user were tricked in to opening a specially crafted\nwebsite, an attacker could potentially exploit this to cause a denial of\nservice via renderer crash or execute arbitrary code with the privileges\nof the sandboxed render process. (CVE-2014-7940)\n\nIt was discovered that the fonts implementation did not initialize memory\nfor a data structure correctly. If a user were tricked in to opening a\nspecially crafted website, an attacker could potentially exploit this to\ncause a denial of service via renderer crash or execute arbitrary code\nwith the privileges of the sandboxed render process. (CVE-2014-7942)\n\nAn out-of-bounds read was discovered in Skia. If a user were tricked in to\nopening a specially crafted website, an attacker could potentially exploit\nthis to cause a denial of service via renderer crash. (CVE-2014-7943)\n\nAn out-of-bounds read was discovered in Blink. If a user were tricked in to\nopening a specially crafted website, an attacker could potentially exploit\nthis to cause a denial of service via renderer crash. (CVE-2014-7946)\n\nIt was discovered that the AppCache proceeded with caching for SSL\nsessions even if there is a certificate error. A remote attacker could\npotentially exploit this by conducting a MITM attack to modify HTML\napplication content. (CVE-2014-7948)\n\nMultiple security issues were discovered in Chromium. If a user were\ntricked in to opening a specially crafted website, an attacker could\npotentially exploit these to read uninitialized memory, cause a denial\nof service via application crash or execute arbitrary code with the\nprivileges of the user invoking the program. (CVE-2015-1205)\n\nMultiple security issues were discovered in V8. If a user were tricked\nin to opening a specially crafted website, an attacker could potentially\nexploit these to read uninitialized memory, cause a denial of service via\nrenderer crash or execute arbitrary code with the privileges of the\nsandboxed render process. (CVE-2015-1346)\n","modified":"2026-02-10T04:40:51Z","published":"2015-01-26T20:01:30Z","related":["UBUNTU-CVE-2014-7923","UBUNTU-CVE-2014-7924","UBUNTU-CVE-2014-7925","UBUNTU-CVE-2014-7926","UBUNTU-CVE-2014-7927","UBUNTU-CVE-2014-7928","UBUNTU-CVE-2014-7929","UBUNTU-CVE-2014-7930","UBUNTU-CVE-2014-7931","UBUNTU-CVE-2014-7932","UBUNTU-CVE-2014-7933","UBUNTU-CVE-2014-7934","UBUNTU-CVE-2014-7937","UBUNTU-CVE-2014-7938","UBUNTU-CVE-2014-7940","UBUNTU-CVE-2014-7942","UBUNTU-CVE-2014-7943","UBUNTU-CVE-2014-7946","UBUNTU-CVE-2014-7948","UBUNTU-CVE-2015-1205","UBUNTU-CVE-2015-1346"],"upstream":["CVE-2014-7923","CVE-2014-7924","CVE-2014-7925","CVE-2014-7926","CVE-2014-7927","CVE-2014-7928","CVE-2014-7929","CVE-2014-7930","CVE-2014-7931","CVE-2014-7932","CVE-2014-7933","CVE-2014-7934","CVE-2014-7937","CVE-2014-7938","CVE-2014-7940","CVE-2014-7942","CVE-2014-7943","CVE-2014-7946","CVE-2014-7948","CVE-2015-1205","CVE-2015-1346","UBUNTU-CVE-2014-7923","UBUNTU-CVE-2014-7924","UBUNTU-CVE-2014-7925","UBUNTU-CVE-2014-7926","UBUNTU-CVE-2014-7927","UBUNTU-CVE-2014-7928","UBUNTU-CVE-2014-7929","UBUNTU-CVE-2014-7930","UBUNTU-CVE-2014-7931","UBUNTU-CVE-2014-7932","UBUNTU-CVE-2014-7933","UBUNTU-CVE-2014-7934","UBUNTU-CVE-2014-7937","UBUNTU-CVE-2014-7938","UBUNTU-CVE-2014-7940","UBUNTU-CVE-2014-7942","UBUNTU-CVE-2014-7943","UBUNTU-CVE-2014-7946","UBUNTU-CVE-2014-7948","UBUNTU-CVE-2015-1205","UBUNTU-CVE-2015-1346"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2476-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7923"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7924"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7925"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7926"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7927"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7928"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7929"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7930"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7931"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7932"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7933"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7934"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7937"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7938"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7940"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7942"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7943"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7946"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-7948"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-1205"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-1346"}],"affected":[{"package":{"name":"oxide-qt","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/oxide-qt@1.4.2-0ubuntu0.14.04.1?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.2-0ubuntu0.14.04.1"}]}],"versions":["1.0.0~bzr437-0ubuntu1","1.0.0~bzr452-0ubuntu1","1.0.0~bzr475-0ubuntu1","1.0.0~bzr490-0ubuntu1","1.0.0~bzr501-0ubuntu1","1.0.0~bzr501-0ubuntu2","1.0.4-0ubuntu0.14.04.1","1.0.5-0ubuntu0.14.04.1","1.1.2-0ubuntu0.14.04.1","1.2.5-0ubuntu0.14.04.1","1.3.4-0ubuntu0.14.04.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"liboxideqt-qmlplugin","binary_version":"1.4.2-0ubuntu0.14.04.1"},{"binary_name":"liboxideqtcore0","binary_version":"1.4.2-0ubuntu0.14.04.1"},{"binary_name":"liboxideqtquick0","binary_version":"1.4.2-0ubuntu0.14.04.1"},{"binary_name":"oxideqmlscene","binary_version":"1.4.2-0ubuntu0.14.04.1"},{"binary_name":"oxideqt-chromedriver","binary_version":"1.4.2-0ubuntu0.14.04.1"},{"binary_name":"oxideqt-codecs","binary_version":"1.4.2-0ubuntu0.14.04.1"},{"binary_name":"oxideqt-codecs-extra","binary_version":"1.4.2-0ubuntu0.14.04.1"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:14.04:LTS","cves":[{"id":"CVE-2014-7923","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7924","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7925","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7926","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7927","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7928","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7929","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7930","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7931","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7932","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7933","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7934","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7937","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7938","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7940","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7942","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7943","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7946","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2014-7948","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2015-1205","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2015-1346","severity":[{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2476-1.json"}}],"schema_version":"1.7.3"}