DEBIAN-CVE-2024-37303

Synapse is an open-source Matrix homeserver. Synapse before version 1.106 allows, by design, unauthenticated remote participants to trigger a download and caching of remote media from a remote homeserver to the local media repository. Such content then also becomes available for download from the...

CVE-2024-37302

Synapse (Matrix homeserver) versions before 1.106 are vulnerable to a disk-fill DoS where an unauthenticated attacker can cause extensive remote-media downloads and caching due to inadequate default rate limiting. Synapse 1.106 adds a leaky-bucket rate limit on remote media downloads to help miti...

Element Synapse 安全漏洞

Element Synapse is an open source Matrix Home Server implementation from Element Open Source. A security vulnerability exists in Element Synapse versions prior to 1.106 that stems from allowing an unauthenticated remote participant to trigger a remote media download and cache it to a local media...

CVE-2021-23827

Keybase Desktop Client before 5.6.0 on Windows and macOS, and before 5.6.1 on Linux, allows an attacker to obtain potentially sensitive media such as private pictures in the Cache and uploadtemps directories. It fails to effectively clear cached pictures, even after deletion via normal methodolog...

The vulnerability of the Media Cache component in Google Chrome allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome’s Media Cache component is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code through a specially created HTML page...

Google Chrome Media Cache Memory Misreference Vulnerability

Google Chrome is a web browser developed by Google.Media Cache is one of the media caching components. A memory misreference vulnerability exists in Media Cache in versions of Google Chrome prior to 66.0.3359.139. A remote attacker could exploit this vulnerability to execute arbitrary code or cau...

OPENSUSE-SU-2018:1437-1 Security update for Chromium

This update for Chromium to version 66.0.3359.181 fixes the following issues: - CVE-2018-6118: Use after free in Media Cache bsc1091288 - CVE-2018-6085: Use after free in Disk Cache - CVE-2018-6086: Use after free in Disk Cache - CVE-2018-6087: Use after free in WebAssembly - CVE-2018-6088: Use...

RHEL 6 : chromium-browser (RHSA-2018:1321)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:1321 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 66.0.3359.139. Security Fixes:...

Critical: Red Hat Security Advisory: chromium-browser security update

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

chromium-browser: Use after free in Media Cache

A double-eviction in the Incognito mode cache that lead to a user-after-free in cache in Google Chrome prior to 66.0.3359.139 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page...

FreeBSD : chromium -- vulnerability (006bee4e-4c49-11e8-9c32-54ee754af08e)

Google Chrome Releases reports : 3 security fixes in this release : - 831963 Critical CVE-2018-6118: Use after free in Media Cache. Reported by Ned Williamson on 2018-04-12 - 837635 Various fixes from internal audits, fuzzing and other initiatives C Tenable Network Security, Inc. The descriptive...

openSUSE Security Update : Chromium (openSUSE-2018-406)

This update for Chromium to version 66.0.3359.139 addresses the following issues : - CVE-2018-6118: Use after free in Media Cache boo1091288 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

KLA11238 Critical vulnerability in Google Chrome

An use-after-free vulnerability related to Media Cache was found in Google Chrome. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. NB: This vulnerability does not have any public CVSS rating, so rating can be changed by the time. N...