Search for vulnerabilities
| Vulnerability ID | VCID-xepx-ajgs-43bz |
| Aliases |
CVE-2014-1557
|
| Summary | Mozilla community member John reported a crash in the Skia library when scaling high quality images if the scaling operation takes too long. This is caused by the image data being discarded while still in use by the scaling operation. This crash is potentially exploitable on some systems. In general this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled, but is potentially a risk in browser or browser-like contexts. |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 8.0 |
| Risk | 4.0 |
| Affected and Fixed Packages | Package Details |
| Reference id | Reference type | URL |
|---|---|---|
| https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1557.json | ||
| https://api.first.org/data/v1/epss?cve=CVE-2014-1557 | ||
| 1121479 | https://bugzilla.redhat.com/show_bug.cgi?id=1121479 | |
| CVE-2014-1557 | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1557 | |
| mfsa2014-64 | https://www.mozilla.org/en-US/security/advisories/mfsa2014-64 | |
| RHSA-2014:0918 | https://access.redhat.com/errata/RHSA-2014:0918 | |
| RHSA-2014:0919 | https://access.redhat.com/errata/RHSA-2014:0919 | |
| USN-2295-1 | https://usn.ubuntu.com/2295-1/ | |
| USN-2296-1 | https://usn.ubuntu.com/2296-1/ |
| Percentile | 0.80408 |
| EPSS Score | 0.01507 |
| Published At | July 30, 2025, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2025-07-31T08:10:42.647312+00:00 | Mozilla Importer | Import | https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2014/mfsa2014-64.md | 37.0.0 |