20 matches found
EUVD-2026-34390
Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
Linux Distros Unpatched Vulnerability : CVE-2026-10941
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted...
DEBIAN-CVE-2026-10941
Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10941
Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-6364
Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...
CVE-2026-4460
Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...
Microsoft Edge (Chromium) < 146.0.3856.62 (CVE-2026-3909)
The version of Microsoft Edge installed on the remote Windows host is prior to 146.0.3856.62. It is, therefore, affected by a vulnerability as referenced in the March 16, 2026 advisory. - Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out ...
Linux Distros Unpatched Vulnerability : CVE-2017-5063
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A numeric overflow in Skia in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to perfor...
Linux Distros Unpatched Vulnerability : CVE-2018-6153
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A precision error in Skia in Google Chrome prior to 68.0.3440.75 allowed a remote attacker who had compromised the renderer process to perform an out of bounds...
Linux Distros Unpatched Vulnerability : CVE-2018-6069
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack buffer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
SUSE CVE-2017-5119
Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...
SUSE CVE-2017-5377
A memory corruption vulnerability in Skia that can occur when using transforms to make gradients, resulting in a potentially exploitable crash. This vulnerability affects Firefox 51...
SUSE CVE-2017-15418
Use of uninitialized memory in Skia in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...
DEBIAN-CVE-2018-12371
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 16 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR 60.1, Thunderbird 60, an...
USN-3175-1 firefox vulnerabilities
Multiple memory safety issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. CVE-2017-5373, CVE-2017-5374 JIT code allocation c...
Google Chrome Skia memory misreference vulnerability (CNVD-2016-03807)
Google Chrome is a popular web browser. A memory misreference vulnerability in Google Chrome Skia allows remote attackers to exploit the vulnerability to construct a malicious WEB page that can be tricked into parsing by users, which can crash the application or execute arbitrary code...
Android Skia Memory Corruption Vulnerability
Android is a cell phone operating system based on the Linux open kernel. A security vulnerability exists in Skia in versions prior to Android 5.1.1 LMY48Z and 6.0 2015-12-01, which can be exploited by remote attackers to execute arbitrary code or cause a denial of service memory corruption via a...
USN-2677-1 oxide-qt vulnerabilities
An uninitialized value issue was discovered in ICU. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service. CVE-2015-1270 A use-after-free was discovered in the GPU process implementation in Chromium. If a user wer...
Google Chrome Skia Integer Overflow Vulnerability
Google Chrome is a web browsing tool developed by Google. An integer overflow exists in the 'SkMallocPixelRef::NewAllocate' function in the core/SkMallocPixelRef.cpp file in Skia used in versions of Google Chrome prior to 41.0.2272.76. vulnerability. A remote attacker could use this vulnerability...
UBUNTU-CVE-2015-1219
Integer overflow in the SkMallocPixelRef::NewAllocate function in core/SkMallocPixelRef.cpp in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted allocation of a...