CVE-2015-1360

Skia <40.0.2214.91 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted data that is improperly handled during text drawing, related to gpu/GrBitmapTextContext.cpp and gpu/GrDistanceFieldTextContext.cpp, a different vulnerability than CVE-2015-1205.

References (5)

Core 5
Core References
Patch x_refsource_confirm
https://codereview.chromium.org/636233008
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201502-13.xml

Scores

EPSS 0.0128
EPSS Percentile 66.6%

Details

CWE
CWE-119
Status published
Products (1)
google/chrome < 40.0.2214.85
Published Jan 27, 2015
Tracked Since Feb 18, 2026