CVE-2018-6034

🗓️ 25 Sep 2018 14:00:00Reported by ChromeType

Insufficient data validation in WebGL in Google Chrome allowed remote out of bounds memory rea

Reporter	Title	Published	Views	Family All 45
FreeBSD	chromium -- multiple vulnerabilities	9 Aug 201700:00	–	freebsd
CNVD	Google Chrome for Mac, Windows and Linux Blink Integer Overflow Vulnerability	31 Jan 201800:00	–	cnvd
Cvelist	CVE-2018-6034	25 Sep 201814:00	–	cvelist
Debian	[SECURITY] [DSA 4103-1] chromium-browser security update	1 Feb 201802:59	–	debian
Debian CVE	CVE-2018-6034	25 Sep 201814:00	–	debiancve
Tenable Nessus	Debian DSA-4103-1 : chromium-browser - security update	1 Feb 201800:00	–	nessus
Tenable Nessus	Fedora 26 : qt5-qtwebengine (2018-c0d3db441f)	28 Feb 201800:00	–	nessus
Tenable Nessus	Fedora 27 : qt5-qtwebengine (2018-e08d828ed9)	26 Feb 201800:00	–	nessus
Tenable Nessus	FreeBSD : chromium -- multiple vulnerabilities (8e986b2b-1baa-11e8-a944-54ee754af08e)	28 Feb 201800:00	–	nessus
Tenable Nessus	GLSA-201802-02 : Chromium, Google Chrome: Multiple vulnerabilities	20 Feb 201800:00	–	nessus

NVD

Vulners

Node

google chromeRange<64.0.3282.119

Node

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_serverMatch6.0

redhat enterprise_linux_workstationMatch6.0

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "64.0.3282.119",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
debian	www.debian.org/security/2018/dsa-4103
crbug	www.crbug.com/784183
securitytracker	www.securitytracker.com/id/1040282
chromereleases	www.chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.html
access	www.access.redhat.com/errata/RHSA-2018:0265
securityfocus	www.securityfocus.com/bid/102797

21 Nov 2024 04:09Current

5.8Medium risk

Vulners AI Score5.8

CVSS 25.8

CVSS 38.1

EPSS0.01012

CWE-125