Astra Linux - уязвимость в chromium

The use of “after free” in GuestView in Google Chrome before version 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption through a Chrome web app. Chromium security severity: Medium...

Denial Of Service (DoS)

Google Chrome is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in the GuestView, which allows an attacker to convince a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app, leading to an application crash...

SUSE CVE-2017-5038

Chrome Apps in Google Chrome prior to 57.0.2987.98 for Linux, Windows, and Mac had a use after free bug in GuestView, which allowed a remote attacker to perform an out of bounds memory read via a crafted Chrome extension...

SUSE CVE-2017-5043

Chrome Apps in Google Chrome prior to 57.0.2987.98 for Linux, Windows, and Mac had a use after free bug in GuestView, which allowed a remote attacker to perform an out of bounds memory read via a crafted Chrome extension...

SUSE CVE-2023-0474

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the 109.0.5414.119 release, fixing 6 vulnerabilities. Some of the security fixes are: High CVE-2023-0471: Use after free in WebTransport. Reported by chichoo Kimchichoo and Cassidy Kim@cassidy6564 on 2022-10-19 High CVE-2023-0472: Use after...

Microsoft Edge (Chromium) < 109.0.1518.70 / 108.0.1462.95 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 109.0.1518.70 / 108.0.1462.95. It is, therefore, affected by multiple vulnerabilities as referenced in the January 26, 2023 advisory. - Use after free in WebTransport in Google Chrome prior to 109.0.5414.119 allowed a...

Fedora 37 : chromium (2023-fd4786cc83)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-fd4786cc83 advisory. Update to 109.0.5414.119. Fixes the following security issues: CVE-2023-0471 CVE-2023-0472 CVE-2023-0473 CVE-2023-0474 Tenable has extracted the...

CVE-2023-0474

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

CVE-2023-0474

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

DEBIAN-CVE-2023-0474

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

Design/Logic Flaw

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

UBUNTU-CVE-2023-0474

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0032-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0032-1 advisory. - Use after free in WebTransport. CVE-2023-0471 - Use after free in WebRTC. CVE-2023-0472 - Type Confusion in ServiceWorker API. CVE-2023-0473 -...

Google Chrome Security Updates (stable-channel-update-for-desktop_24-2023-01) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

Microsoft Edge (Chromium) < 109.0.1343.27 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 109.0.1343.27. It is, therefore, affected by multiple vulnerabilities as referenced in the January 26, 2023 advisory. - Use after free in WebTransport. CVE-2023-0471 - Use after free in WebRTC. CVE-2023-0472 - Type...

Chromium: CVE-2023-0474 Use after free in GuestView

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

FreeBSD : chromium -- multiple vulnerabilities (3d0a3eb0-9ca3-11ed-a925-3065ec8fd3ec)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3d0a3eb0-9ca3-11ed-a925-3065ec8fd3ec advisory. - Use after free in WebTransport. CVE-2023-0471 - Use after free in WebRTC. CVE-2023-0472 - Ty...

CVE-2023-0474

Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. Chromium security severity: Medium...

CVE-2023-0474

CVE-2023-0474 affects Google Chrome/Chromium GuestView prior to 109.0.5414.119. The vulnerability is a Use-after-free in GuestView that could allow a user-assisted attacker who convinces a user to install a malicious extension to trigger heap corruption via a Chrome web app. The Chrome release no...