Endpoint Vulnerability

Read of uninitialized memory in Web Audio

Description

Security researcher Holger Fuhrmannek used the used the Address Sanitizer tool to discover a crash in Web Audio while manipulating timelines. This allowed for the a small block of memory with an uninitialized pointer to be read. The crash it not exploitable.

Affected Products

Firefox

References

CVE-2014-8640,