2289 matches found
Security update for chromium (critical)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10009-1 Rating: critical References: 1199893 1200139 1200423 Cross-References: CVE-2022-1853 CVE-2022-1854 CVE-2022-1855 CVE-2022-1856 CVE-2022-1857 CVE-2022-1858 CVE-2022-1859 CVE-2022-1860 CVE-2022-1861...
Chromium: CVE-2022-2008 Out of bounds memory access in WebGL
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Update Chrome now: Four high risk vulnerabilities found
Users of Chrome have been advised to apply updates as soon as possible related to seven security vulnerabilities. CISA has also warned that the vulnerabilities could be used to take control of affected systems. Although no detailed explanation of how these vulnerabilities work has been released,...
Debian DSA-5163-1 : chromium - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5163 advisory. - Use after free in ANGLE in Google Chrome prior to 102.0.5005.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-5475-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5475-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could...
chromium -- multiple vulnerabilities
Chrome Releases reports: This release contains 7 security fixes, including: 1326210 High CVE-2022-2007: Use after free in WebGPU. Reported by David Manouchehri on 2022-05-17 1317673 High CVE-2022-2008: Out of bounds memory access in WebGL. Reported by khangkito - Tran Van Khang VinCSS on 2022-04-...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser from Google, Inc. and V8 is an open source JavaScript engine. A resource management error vulnerability exists in Google Chrome versions 90.0.4430.72 through 102.0.5005.63, which stems from a boundary error in WebGL. A remote attacker could exploit this vulnerabilit...
KLA12556 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebGPU can be exploited to cause denial of service or execute...
Google Chrome < 102.0.5005.115 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 102.0.5005.115. It is, therefore, affected by multiple vulnerabilities as referenced in the 202206stable-channel-update-for-desktop advisory. - Use after free in ANGLE in Google Chrome prior to 102.0.5005.115 allowed a...
Google Chrome < 102.0.5005.115 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 102.0.5005.115. It is, therefore, affected by multiple vulnerabilities as referenced in the 202206stable-channel-update-for-desktop advisory. - Use after free in ANGLE in Google Chrome prior to 102.0.5005.115 allowed a...
FreeBSD : chromium -- multiple vulnerabilities (c80ce2dd-e831-11ec-bcd2-3065ec8fd3ec)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the c80ce2dd-e831-11ec-bcd2-3065ec8fd3ec advisory. - Use after free in ANGLE in Google Chrome prior to 102.0.5005.115 allowed a remote attacker t...
MGASA-2022-0220 Updated firefox/nss/nspr packages fix security vulnerability
A malicious website could have learned the size of a cross-origin resource that supported Range requests CVE-2022-31736. A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash CVE-2022-31737. When exiting fullscreen...
Updated firefox/nss/nspr packages fix security vulnerability
A malicious website could have learned the size of a cross-origin resource that supported Range requests CVE-2022-31736. A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash CVE-2022-31737. When exiting fullscreen...
SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2022:1921-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1921-1 advisory. - A malicious website could have learned the size of a cross-origin resource that supported Range requests. This vulnerability...
Debian DLA-3040-1 : firefox-esr - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3040 advisory. Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information...
Mozilla: Heap buffer overflow in WebGL
The Mozilla Foundation Security Advisory describes this flaw as: A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash...
Mozilla: Heap buffer overflow in WebGL
The Mozilla Foundation Security Advisory describes this flaw as: A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash...
Mozilla: Heap buffer overflow in WebGL
The Mozilla Foundation Security Advisory describes this flaw as: A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash...
Mozilla: Heap buffer overflow in WebGL
The Mozilla Foundation Security Advisory describes this flaw as: A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash...
Mozilla: Heap buffer overflow in WebGL
The Mozilla Foundation Security Advisory describes this flaw as: A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash...