CVE-2024-4558

Опубликовано: 07 мая 2024

Источник: debian

Описание

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	124.0.6367.155-1		package
chromium	end-of-life		bullseye	package
chromium	end-of-life		buster	package
webkit2gtk	fixed	2.44.3-1		package
wpewebkit	fixed	2.44.3-1		package
wpewebkit	ignored		bookworm	package
wpewebkit	ignored		bullseye	package

Примечания

https://webkitgtk.org/security/WSA-2024-0004.html

Связанные уязвимости

CVE-2024-4558

CVSS3: 9.6

ubuntu

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4558

CVSS3: 7

redhat

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4558

CVSS3: 9.6

nvd

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4558

msrc

около 1 года назад

Chromium: CVE-2024-4558 Use after free in ANGLE

GHSA-r4j8-j63p-24j8

CVSS3: 7.5

github

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)