35 matches found
mozilla: Uninitialized memory used by WebGL
The Mozilla Foundation Security Advisory describes this flaw as: ANGLE failed to initialize parameters which led to reading from uninitialized memory. This could be leveraged to leak sensitive data from memory...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in versions prior to Google Chrome 124.0.6367.155, which is caused by free usage in ANGLE. An attacker can exploit this vulnerability to execute arbitrary code on a system...
PT-2024-3166 · Google +4 · Google Chrome +4
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 124.0.6367.78 Description: The issue is related to a type confusion in the ANGLE graphics layer engine, which could allow a remote attacker to exploit heap corruption via a crafted HTML page. This could...
Google Chrome 缓冲区错误漏洞
Google Chrome is a web browser from Google, Inc. A buffer overflow vulnerability exists in Google Chrome ANGLE, which can be exploited by remote attackers to overflow the buffer and execute arbitrary code on the system, or cause the application to crash...
Angle 缓冲区错误漏洞
Angle is a graphics layer engine. It is used in the default WebGl backend of Google Chrome and Mozilla Firefox on Windows platforms. A security vulnerability exists in Angle, which arises when the program incorrectly calculates the depth spacing of data and reads the end of the buffer on upload...
DEBIAN-CVE-2021-21233
Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
chromium-browser: Use after free in ANGLE
Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
chromium-browser: Use after free in ANGLE
Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
chromium-browser: Use after free in ANGLE
Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Google Chrome ANGLE Resource Management Error Vulnerability
Google Chrome is a web browser from Google.Almost Native Graphics Layer Engine ANGLE is a graphics layer engine that allows Windows users to run WebGL and other OpenGL ES 2.0 content by translating the OpenGL ES 2.0 API to DirectX 9 or DirectX 11 API calls. DirectX 11 API calls to run WebGL and...
Google Chrome Almost Native Graphics Layer Engine Buffer Overflow Vulnerability
Google Chrome is a web browser from Google.Almost Native Graphics Layer Engine ANGLE is a graphics layer engine that allows Windows users to run WebGL and other OpenGL ES 2.0 content by translating the OpenGL ES 2.0 API to DirectX 9 or DirectX 11 API calls. DirectX 11 API calls to run WebGL and...
Google Chrome 57 Browser Update Patches 'High' Severity Flaws
Google released an updated version of its Chrome browser on Thursday to fix nine high-severity vulnerabilities that if exploited could allow adversaries to take control of targeted systems. As part of the update, Google thanked nearly two dozen bug hunters with bug bounty payments totaling $38,00...
Integer overflow
Integer signedness error in the SharedBufferManagerParent::RecvAllocateGrallocBuffer function in the buffer-management implementation in the graphics layer in Mozilla Firefox OS before 2.2 might allow attackers to cause a denial of service memory corruption via a negative value of a size paramete...
CVE-2011-3002
Almost Native Graphics Layer Engine ANGLE, as used in Mozilla Firefox before 7.0 and SeaMonkey before 2.4, does not validate the return value of a GrowAtomTable function call, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vecto...
CVE-2011-3002
Almost Native Graphics Layer Engine ANGLE, as used in Mozilla Firefox before 7.0 and SeaMonkey before 2.4, does not validate the return value of a GrowAtomTable function call, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vecto...