Unrated severityNVD Advisory· Published Nov 19, 2014· Updated Jun 17, 2026

CVE-2014-7907

Description

Multiple use-after-free vulnerabilities in modules/screen_orientation/ScreenOrientationController.cpp in Blink, as used in Google Chrome before 39.0.2171.65, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger improper handling of a detached frame, related to the (1) lock and (2) unlock methods.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Google/Chrome2 versions
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <=39.0.2171.45
- (no CPE)range: <39.0.2171.65
Google/Blinkllm-create
osv-coords
pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweed
Range: < 55.0.2883.75-3.1

Patches

Vulnerability mechanics

References

googlechromereleases.blogspot.com/2014/11/stable-channel-update_18.htmlnvd
rhn.redhat.com/errata/RHSA-2014-1894.htmlnvd
secunia.com/advisories/60194nvd
secunia.com/advisories/62608nvd
www.securityfocus.com/bid/71170nvd
www.securitytracker.com/id/1031241nvd
code.google.com/p/chromium/issues/detailnvd
exchange.xforce.ibmcloud.com/vulnerabilities/98795nvd
src.chromium.org/viewvc/blinknvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000