Lucene search
K

20 matches found

ALT Linux
ALT Linux
added 2023/04/04 12:0 a.m.45 views

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1

23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...

8.5AI score0.31864EPSS
Exploits8
Mageia
Mageia
added 2022/12/06 11:32 p.m.70 views

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the new 108 branch with the 108.0.5359.94 release, fixing many bugs and 29 vulnerabilities, together with 107.0.5304.121 and 108.0.5359.71. Some of the security fixes are - CVE-2022-4174: Type Confusion in V8. Reported by Zhenghang Xiao...

9.6CVSS9.1AI score0.31864EPSS
Exploits4References2
The Hacker News
The Hacker News
added 2022/12/03 4:41 a.m.87 views

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Search giant Google on Friday released an out-of-band security update to fix a new actively exploited zero-day flaw in its Chrome web browser. The high-severity flaw, tracked as CVE-2022-4262, concerns a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's Threat Analysis...

9.6CVSS1.8AI score0.70461EPSS
Exploits8
hivepro
hivepro
added 2022/11/29 6:11 a.m.38 views

Actively Exploited Zero-Day Bug in Chrome

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary CVE-2022-4135 is a high-severity heap buffer overflow issue that affects the GPU component. The fault is caused by a boundary error in the GPU while processing untrusted HTML input. An attacker wh...

1AI score0.31864EPSS
Exploits1
The Hacker News
The Hacker News
added 2022/11/29 4:20 a.m.162 views

CISA Warns of Actively Exploited Critical Oracle Fusion Middleware Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a critical flaw impacting Oracle Fusion Middleware to its Known Exploited Vulnerabilities KEV Catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2021-35587, carries a CVSS score of 9.8 a...

9.8CVSS1AI score0.96284EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/11/29 12:0 a.m.42 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2022:10221-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10221-1 advisory. - Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to...

9.6CVSS8.9AI score0.31864EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/11/29 12:0 a.m.130 views

Microsoft Edge (Chromium) < 107.0.1418.62 Vulnerability

The version of Microsoft Edge installed on the remote Windows host is prior to 107.0.1418.62. It is, therefore, affected by a vulnerability as referenced in the November 28, 2022 advisory. - Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had...

9.6CVSS9AI score0.31864EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2022/11/28 3:34 p.m.85 views

Chromium: CVE-2022-4135 Heap buffer overflow in GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2022-4135 exists in the wild...

9.6CVSS9.3AI score0.31864EPSS
Exploits1
OSV
OSV
added 2022/11/28 8:40 a.m.7 views

OPENSUSE-SU-2022:10221-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 107.0.5304.121 boo1205736 CVE-2022-4135: Heap buffer overflow in GPU...

9.6CVSS9.8AI score0.31864EPSS
Exploits1References3
Debian
Debian
added 2022/11/27 9:33 p.m.42 views

[SECURITY] [DSA 5289-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5289-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 27, 2022 https://www.debian.org/security/faq -...

9.6CVSS9.8AI score0.31864EPSS
Exploits1
The Hacker News
The Hacker News
added 2022/11/25 1:12 p.m.213 views

Update Chrome Browser Now to Patch New Actively Exploited Zero-Day Flaw

Google on Thursday released software updates to address yet another zero-day flaw in its Chrome web browser. Tracked as CVE-2022-4135, the high-severity vulnerability has been described as a heap buffer overflow in the GPU component. Clement Lecigne of Google's Threat Analysis Group TAG has been...

9.6CVSS0.8AI score0.70461EPSS
Exploits6
Circl
Circl
added 2022/11/25 4:0 a.m.12 views

CVE-2022-4135

creationtimestamp| type| source ---|---|--- 2022-11-25 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=922 2022-11-25 13:27:05+00:00| exploited| https://t.me/truesecator/3748 2022-11-25 14:12:22+00:00| exploited| https://t.me/CyberSecurityIL/16865 2022-11-25 14:18:01+00:00...

9.6CVSS7.5AI score0.31864EPSS
Exploits1References18
OSV
OSV
added 2022/11/25 1:15 a.m.23 views

CVE-2022-4135

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS6.5AI score0.31864EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/11/25 1:15 a.m.50 views

CVE-2022-4135

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS7.6AI score0.31864EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/11/25 12:0 a.m.46 views

CVE-2022-4135

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High Recent assessments: Assessed Attacker Value: 0 Assessed Attacke...

9.6CVSS2.6AI score0.31864EPSS
In wildExploits1References4
Vulnrichment
Vulnrichment
added 2022/11/25 12:0 a.m.8 views

CVE-2022-4135

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

7.2AI score0.31864EPSS
Exploits1References3
CVE
CVE
added 2022/11/25 12:0 a.m.1211 views

CVE-2022-4135

CVE-2022-4135 affects Google Chrome/Chromium GPU code. It is a heap buffer overflow in the GPU path prior to Chrome 107.0.5304.121 that could allow a remote attacker (with renderer access) to escape the sandbox via a crafted HTML page. Chrome confirms exploitation in the wild; a stable-channel pa...

9.6CVSS9.3AI score0.31864EPSS
In wildExploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/11/25 12:0 a.m.56 views

FreeBSD : chromium -- multiple vulnerabilities (8d3838b0-6ca8-11ed-92ce-3065ec8fd3ec)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 8d3838b0-6ca8-11ed-92ce-3065ec8fd3ec advisory. - Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who ha...

9.6CVSS8.9AI score0.31864EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/11/24 12:0 a.m.80 views

Google Chrome < 107.0.5304.121 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 107.0.5304.121. It is, therefore, affected by a vulnerability as referenced in the 202211stable-channel-update-for-desktop24 advisory. - Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a...

9.6CVSS8.9AI score0.31864EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2022/11/24 12:0 a.m.43 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 1 security fix: 1392715 High CVE-2022-4135: Heap buffer overflow in GPU. Reported by Clement Lecigne of Google's Threat Analysis Group on 2022-11-22 Google is aware that an exploit for CVE-2022-4135 exists in the wild...

9.6CVSS1.2AI score0.31864EPSS
Exploits1References1
Rows per page
Query Builder