CVE-2014-1557: Code Injection
First published: Wed Jul 23 2014(Updated: )
The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, does not properly handle the discarding of image data during function execution, which allows remote attackers to execute arbitrary code by triggering prolonged image scaling, as demonstrated by scaling of a high-quality image.
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Solaris SPARC | =11.3 | |
| Mozilla Firefox | <=30.0 | |
| Mozilla Firefox | =24.0 | |
| Mozilla Firefox | =24.1.0 | |
| Mozilla Firefox | =24.1.1 | |
| Mozilla Firefox ESR | =24.0.1 | |
| Mozilla Firefox ESR | =24.0.2 | |
| Mozilla Firefox ESR | =24.2 | |
| Mozilla Firefox ESR | =24.3 | |
| Mozilla Firefox ESR | =24.4 | |
| Mozilla Firefox ESR | =24.5 | |
| Mozilla Firefox ESR | =24.6 | |
| Mozilla Thunderbird | <=24.6 | |
| Mozilla Thunderbird | =24.0 | |
| Mozilla Thunderbird | =24.0.1 | |
| Mozilla Thunderbird | =24.1 | |
| Mozilla Thunderbird | =24.1.1 | |
| Mozilla Thunderbird | =24.2 | |
| Mozilla Thunderbird | =24.3 | |
| Mozilla Thunderbird | =24.4 | |
| Mozilla Thunderbird | =24.5 | |
| Debian GNU/Linux | =6.0 | |
| Debian GNU/Linux | =7.0 | |
| Mozilla Firefox ESR | =24.0 | |
| Mozilla Firefox ESR | =24.1.0 | |
| Mozilla Firefox ESR | =24.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://linux.oracle.com/errata/ELSA-2014-0918.html
- http://secunia.com/advisories/59591
- http://secunia.com/advisories/59719
- http://secunia.com/advisories/59760
- http://secunia.com/advisories/60083
- http://secunia.com/advisories/60306
- http://secunia.com/advisories/60486
- http://secunia.com/advisories/60621
- http://secunia.com/advisories/60628
- http://www.debian.org/security/2014/dsa-2986
- http://www.debian.org/security/2014/dsa-2996
- http://www.mozilla.org/security/announce/2014/mfsa2014-64.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.securityfocus.com/bid/68824
- http://www.securitytracker.com/id/1030619
- http://www.securitytracker.com/id/1030620
- https://bugzilla.mozilla.org/show_bug.cgi?id=913805
- https://security.gentoo.org/glsa/201504-01
Frequently Asked Questions
What is the severity of CVE-2014-1557?
CVE-2014-1557 is classified as a critical vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2014-1557?
To fix CVE-2014-1557, update Mozilla Firefox to version 31.0 or later, or Firefox ESR to version 24.7 or later.
Which versions are affected by CVE-2014-1557?
CVE-2014-1557 affects Mozilla Firefox versions prior to 31.0, Firefox ESR versions before 24.7, and Thunderbird versions before 24.7.
What type of vulnerability is CVE-2014-1557?
CVE-2014-1557 is a remote code execution vulnerability due to improper handling of image data.
Can CVE-2014-1557 be exploited by an attacker?
Yes, CVE-2014-1557 can be exploited by attackers if users visit a malicious webpage that triggers the vulnerability.
- agent/references
- agent/type
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/event
- agent/author
- agent/last-modified-date
- agent/source
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/oracle
- canonical/oracle solaris sparc
- version/oracle solaris sparc/11.3
- vendor/mozilla
- canonical/mozilla firefox
- version/mozilla firefox/30.0
- version/mozilla firefox/24.0
- version/mozilla firefox/24.1.0
- version/mozilla firefox/24.1.1
- canonical/mozilla firefox esr
- version/mozilla firefox esr/24.0.1
- version/mozilla firefox esr/24.0.2
- version/mozilla firefox esr/24.2
- version/mozilla firefox esr/24.3
- version/mozilla firefox esr/24.4
- version/mozilla firefox esr/24.5
- version/mozilla firefox esr/24.6
- canonical/mozilla thunderbird
- version/mozilla thunderbird/24.6
- version/mozilla thunderbird/24.0
- version/mozilla thunderbird/24.0.1
- version/mozilla thunderbird/24.1
- version/mozilla thunderbird/24.1.1
- version/mozilla thunderbird/24.2
- version/mozilla thunderbird/24.3
- version/mozilla thunderbird/24.4
- version/mozilla thunderbird/24.5
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/6.0
- version/debian gnu/linux/7.0
- version/mozilla firefox esr/24.0
- version/mozilla firefox esr/24.1.0
- version/mozilla firefox esr/24.1.1