CVE-2017-5112

🗓️ 27 Oct 2017 05:00:00Reported by ChromeType

Heap buffer overflow in WebGL in Google Chrome allowing remote code executio

Reporter	Title	Published	Views	Family All 59
ArchLinux	[ASA-201709-1] chromium: multiple issues	6 Sep 201700:00	–	archlinux
Circl	CVE-2017-5112	29 Oct 201719:09	–	circl
CNVD	Google Chrome heap buffer overflow vulnerability (CNVD-2017-31821)	8 Sep 201700:00	–	cnvd
Check Point Advisories	Google Chrome WebGL 2 ReadPixels Heap Buffer Overflow (CVE-2017-5112)	20 Nov 201700:00	–	checkpoint_advisories
Cvelist	CVE-2017-5112	27 Oct 201705:00	–	cvelist
Debian	[SECURITY] [DSA 3985-1] chromium-browser security update	28 Sep 201712:32	–	debian
Debian	[SECURITY] [DSA 3985-1] chromium-browser security update	28 Sep 201712:32	–	debian
Debian CVE	CVE-2017-5112	27 Oct 201705:00	–	debiancve
Tenable Nessus	Debian DSA-3985-1 : chromium-browser - security update	29 Sep 201700:00	–	nessus
Tenable Nessus	Fedora 27 : chromium (2017-109f8db088)	15 Jan 201800:00	–	nessus

NVD

Node

google chromeRange<61.0.3163.79

AND

microsoft windowsMatch-

[
  {
    "product": "Google Chrome prior to 61.0.3163.79 for Windows",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Google Chrome prior to 61.0.3163.79 for Windows"
      }
    ]
  }
]

Source	Link
chromereleases	www.chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.html
securitytracker	www.securitytracker.com/id/1039291
debian	www.debian.org/security/2017/dsa-3985
securityfocus	www.securityfocus.com/bid/100610
crbug	www.crbug.com/740603
access	www.access.redhat.com/errata/RHSA-2017:2676
security	www.security.gentoo.org/glsa/201709-15

13 May 2026 00:24Current

8.7High risk

Vulners AI Score8.7

CVSS 26.8

CVSS 38.8

EPSS0.01479

CWE-119