Vulnerability Change Records for CVE-2014-7926

Change History

CVE Modified by Source 2/20/2015 10:1:09 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://security.gentoo.org/glsa/glsa-201502-13.xml

Initial CVE Analysis 1/23/2015 1:21:41 PM

Action Type Old Value New Value

CVE Modified by Google Inc. 4/23/2019 3:29:17 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html [No Types Assigned]

CVE Modified by Google Inc. 1/02/2017 9:59:13 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://secunia.com/advisories/62383 [No Types Assigned]
Added Reference

								
							
							
						
http://secunia.com/advisories/62665 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1031623 [No Types Assigned]

CPE Deprecation Remap 10/30/2018 12:27:36 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:novell:opensuse:13.2:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

CVE Modified by Source 10/22/2015 9:59:46 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

CVE Modified by Source 3/11/2015 10:0:38 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/72288

CPE Deprecation Remap 10/30/2018 12:27:35 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:novell:opensuse:13.1:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

CVE Modified by Source 10/24/2016 9:59:47 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

CVE Modified by Source 2/10/2015 9:59:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://secunia.com/advisories/62575

Modified Analysis 1/23/2015 8:39:49 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:google:chrome:40.0.2214.85:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:a:icu_project:international_components_for_unicode:52:*:*:*:*:*:*:* (and previous)
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CWE

								
							
							
						
CWE-17
Changed Reference Type
http://googlechromereleases.blogspot.com/2015/01/stable-update.html No Types Assigned
http://googlechromereleases.blogspot.com/2015/01/stable-update.html Advisory

CVE Modified by Source 4/06/2015 9:59:47 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://advisories.mageia.org/MGASA-2015-0047.html

CVE Modified by Google Inc. 4/23/2017 9:59:00 PM

Action Type Old Value New Value
Changed Description
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a (1) zero-length quantifier or (2) look-behind expression, a different vulnerability than CVE-2014-7923.
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a zero-length quantifier.
Removed Reference
http://bugs.icu-project.org/trac/ticket/11370 [Broken Link]

								
						

CVE Modified by Google Inc. 6/30/2017 9:29:07 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201503-06 [No Types Assigned]

Modified Analysis 1/19/2018 12:37:29 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:icu_project:international_components_for_unicode:*:*:*:*:*:*:*:* versions up to (including) 52
OR
     *cpe:2.3:a:icu-project:international_components_for_unicode:*:*:*:*:*:c\/c\+\+:*:* versions up to (excluding) 55.1
Changed Reference Type
http://secunia.com/advisories/62383 No Types Assigned
http://secunia.com/advisories/62383 Permissions Required
Changed Reference Type
http://secunia.com/advisories/62665 No Types Assigned
http://secunia.com/advisories/62665 Permissions Required
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html Third Party Advisory
Changed Reference Type
http://www.securitytracker.com/id/1031623 No Types Assigned
http://www.securitytracker.com/id/1031623 Third Party Advisory, VDB Entry
Changed Reference Type
https://security.gentoo.org/glsa/201503-06 No Types Assigned
https://security.gentoo.org/glsa/201503-06 Technical Description

CVE Modified by Source 3/09/2015 9:59:21 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-0093.html

CVE Modified by Source 3/05/2015 9:59:08 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.ubuntu.com/usn/USN-2476-1