Out of bounds read in WebRTC in Google Chrome prior to 1.77 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Use after free in GPU in Google Chrome prior to 1.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page and browser shutdown. Inappropriate implementation in Download in Google Chrome prior to 1.77 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Heap buffer overflow in WebUI in Google Chrome prior to 1.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via UI interaction. Type confusion in Data Transfer in Google Chrome prior to 1.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Type confusion in DevTools in Google Chrome prior to 1.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via UI interactions. Insufficient policy enforcement in DevTools in Google Chrome prior to 1.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Integer overflow in Core in Google Chrome prior to 1.77 allowed a remote attacker who had one a race condition to potentially exploit heap corruption via a crafted HTML page.
Use after free in Web Payments API in Google Chrome on Android prior to 1.177 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Use after free in SwiftShader in Google Chrome prior to 1.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Use after free in Vulkan in Google Chrome prior to 1.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Heap buffer overflow in Video in Google Chrome prior to 1.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Use after free in Video in Google Chrome prior to 1.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Use after free in WebRTC in Google Chrome on Windows prior to 1.177 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Integer overflow in PDF in Google Chrome prior to 1.177 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Use after free in Prompts in Google Chrome prior to 1.177 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
0 kommentar(er)
