151 matches found
CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
DEBIAN-CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
Design/Logic Flaw
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
CVE-2023-6704
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. Chromium security severity: High...
CVE-2023-6704
Use-after-free in libavif in Google Chrome (Chromium) prior to 120.0.6099.109 can allow a remote attacker to potentially trigger heap corruption via a crafted image file. Official advisories and vendor updates indicate the fix is included in Chrome/Chromium version 120.0.6099.109 and later. Affec...
Chromium: CVE-2023-6704 Use after free in libavif
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Google Chrome < 120.0.6099.110 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 120.0.6099.110. It is, therefore, affected by multiple vulnerabilities as referenced in the 202312stable-channel-update-for-desktop12 advisory. - Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a...
Fedora 39 : chromium (2023-1fe02ca797)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-1fe02ca797 advisory. update to 120.0.6099.109 - High CVE-2023-6702: Type Confusion in V8 - High CVE-2023-6703: Use after free in Blink - High CVE-2023-6704: Use after fr...
Google Chrome < 120.0.6099.109 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 120.0.6099.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 202312stable-channel-update-for-desktop12 advisory. - Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a...
FreeBSD : chromium -- multiple security fixes (502c9f72-99b3-11ee-86bb-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 502c9f72-99b3-11ee-86bb-a8a1599412c6 advisory. - Type Confusion in V8. CVE-2023-6702 - Use after free in Blink. CVE-2023-6703 - Use after fre...
Google Chrome Security Vulnerability
Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that originates from a post-release reuse issue in the libavif module...
chromium -- multiple security fixes
Chrome Releases reports: This update includes 9 security fixes: 1501326 High CVE-2023-6702: Type Confusion in V8. Reported by Zhiyi Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group on 2023-11-10 1502102 High CVE-2023-6703: Use after free in Blink. Reported by Cassidy...
openSUSE 15 Security Update : opera (openSUSE-SU-2023:0396-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0396-1 advisory. - Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to...
Google Chrome < 120.0.6099.109 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 120.0.6099.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 202312stable-channel-update-for-desktop12 advisory. - Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a...
FreeBSD : electron25 -- multiple vulnerabilities (e07a7754-12a4-4661-b852-fd221d68955f)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e07a7754-12a4-4661-b852-fd221d68955f advisory. - Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker...
Fedora 37 : chromium (2023-ceaa6b19c1)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ceaa6b19c1 advisory. update to 119.0.6045.199, upstream security release High CVE-2023-6345: Integer overflow in Skia High CVE-2023-6346: Use after free in WebAudio High...