Mozilla: Heap buffer overflow in WebGL

The Mozilla Foundation Security Advisory describes this flaw as: Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow on some video drivers...

Mozilla: Heap buffer overflow in WebGL

The Mozilla Foundation Security Advisory describes this flaw as: Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow on some video drivers...

Mozilla: Heap buffer overflow in WebGL

The Mozilla Foundation Security Advisory describes this flaw as: Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow on some video drivers...

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser. A heap buffer overflow vulnerability exists in Mozilla Firefox WebGL, which can be exploited by a remote attacker to submit a specially crafted WEB request that can be tricked into being parsed by the user, which can cause the application to crash or...

DEBIAN-CVE-2020-6555

Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

chromium-browser: Out of bounds read in WebGL

Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

CVE-2020-6100

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. A specially crafted pixel shader can cause memory corruption vulnerability. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability...

Google Chrome ANGLE Resource Management Error Vulnerability

Google Chrome is a web browser from Google.Almost Native Graphics Layer Engine ANGLE is a graphics layer engine that allows Windows users to run WebGL and other OpenGL ES 2.0 content by translating the OpenGL ES 2.0 API to DirectX 9 or DirectX 11 API calls. DirectX 11 API calls to run WebGL and...

Mozilla: Uninitialized memory could be read when using the WebGL copyTexSubImage method

The Mozilla Foundation Security Advisory describes this flaw as: When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the returned values be zero. Previously, this memory was uninitialized, leading to potentially...

Mozilla: Uninitialized memory could be read when using the WebGL copyTexSubImage method

The Mozilla Foundation Security Advisory describes this flaw as: When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the returned values be zero. Previously, this memory was uninitialized, leading to potentially...

Google Chrome Almost Native Graphics Layer Engine Buffer Overflow Vulnerability

Google Chrome is a web browser from Google.Almost Native Graphics Layer Engine ANGLE is a graphics layer engine that allows Windows users to run WebGL and other OpenGL ES 2.0 content by translating the OpenGL ES 2.0 API to DirectX 9 or DirectX 11 API calls. DirectX 11 API calls to run WebGL and...

UBUNTU-CVE-2019-11693

The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. Note: this issue only occurs on Linux. Other operating systems are unaffected.. This...

CVE-2018-6073

A heap buffer overflow in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page...

CVE-2018-12152

Pointer corruption in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 aka 15.33.x.5056, 10.18.x.5057 aka 15.36.x.5057 and 20.19.x.5058 aka 15.40.x.5058 may allow an unauthenticated remote user to potentially execute arbitrary WebGL code via local access...

chromium-browser: Heap buffer overflow in WebGL

Insufficient data validation in WebGL in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Google Chrome heap buffer overflow vulnerability (CNVD-2018-17041)

Google Chrome is a web browser developed by the American company Google Google. A heap buffer overflow vulnerability exists in WebGL in Google Chrome. An attacker can exploit the vulnerability to execute arbitrary code in the browser context...

Mozilla Firefox Heap Memory Misreference Vulnerability

Mozilla Firefox browser Firefox is a free, open source browser for Windows, Linux and MacOSX platforms. A memory misreference vulnerability exists in mozilla::WebGLContext::DrawElementsInstanced in Mozilla Firefox during WebGL operations. An attacker could exploit this vulnerability to cause a...

GPU memory module security bypass vulnerability

A GPU Graphics Processing Unit memory module is a GPU memory module. A security vulnerability exists in the GPU memory module. An attacker can exploit this vulnerability to bypass security restrictions and perform unauthorized operations by using the JavaScript WebGL API...

Google Chrome WebGL Information Disclosure Vulnerability

Google Chrome is a web browser developed by Google, Inc. WebGL is one of the 3D drawing standards. A security vulnerability exists in WebGL in versions of Google Chrome prior to 65.0.3325.146. A remote attacker can exploit this vulnerability to obtain sensitive information...

Google Chrome WebGL Buffer Overflow Vulnerability

Google Chrome is a web browser developed by Google, Inc. WebGL is one of the 3D drawing standards. A heap buffer overflow vulnerability exists in WebGL in versions prior to Google Chrome 65.0.3325.146, which stems from the program failing to properly perform boundary detection. A remote attacker...