CVE-2017-5113

🗓️ 27 Oct 2017 05:00:00Reported by ChromeType

Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowing remote attacker to exploit heap corruption via crafted HTML page

Reporter	Title	Published	Views	Family All 49
ArchLinux	[ASA-201709-1] chromium: multiple issues	6 Sep 201700:00	–	archlinux
CNVD	Google Chrome heap buffer overflow vulnerability (CNVD-2017-31822)	8 Sep 201700:00	–	cnvd
CVE	CVE-2017-5113	27 Oct 201705:00	–	cve
Debian	[SECURITY] [DSA 3985-1] chromium-browser security update	28 Sep 201712:32	–	debian
Debian	[SECURITY] [DSA 3985-1] chromium-browser security update	28 Sep 201712:32	–	debian
Debian CVE	CVE-2017-5113	27 Oct 201705:00	–	debiancve
Tenable Nessus	Debian DSA-3985-1 : chromium-browser - security update	29 Sep 201700:00	–	nessus
Tenable Nessus	Fedora 27 : chromium (2017-109f8db088)	15 Jan 201800:00	–	nessus
Tenable Nessus	Fedora 26 : chromium (2017-efeb59171d)	18 Oct 201700:00	–	nessus
Tenable Nessus	FreeBSD : chromium -- multiple vulnerabilities (e1100e63-92f7-11e7-bd95-e8e0b747a45a)	7 Sep 201700:00	–	nessus

[
  {
    "product": "Google Chrome prior to 61.0.3163.79 for Mac, Windows and Linux, and 61.0.3163.81 for Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Google Chrome prior to 61.0.3163.79 for Mac, Windows and Linux, and 61.0.3163.81 for Android"
      }
    ]
  }
]

Source	Link
chromereleases	www.chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.html
securitytracker	www.securitytracker.com/id/1039291
securityfocus	www.securityfocus.com/bid/100610
debian	www.debian.org/security/2017/dsa-3985
crbug	www.crbug.com/747043
access	www.access.redhat.com/errata/RHSA-2017:2676
security	www.security.gentoo.org/glsa/201709-15

30 Dec 2017 10:57Current

8.7High risk

Vulners AI Score8.7

EPSS0.01265