Out-of-bounds read vulnerability in RenderTable::simplifiedNormalFlowLayout function in Blink

Out-of-bounds read vulnerability in RenderTable::simplifiedNormalFlowLayout function in Blink

CVE-2014-7946 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The RenderTable::simplifiedNormalFlowLayout function in core/rendering/RenderTable.cpp in Blink, as used in Google Chrome before 40.0.2214.91, skips captions during table layout in certain situations, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors related to the Fonts implementation.

Learn more about our Cis Benchmark Audit For Google Chrome.