Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-89h8-vm89-88m9

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

Ссылки

EPSS

Процентиль: 70%
0.00629
Низкий

8.8 High

CVSS3

CVE ID

CVE-2016-7395

Связанные уязвимости

ubuntu логотип

CVE-2016-7395

CVSS3: 8.8
ubuntu
больше 9 лет назад

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

nvd логотип

CVE-2016-7395

CVSS3: 8.8
nvd
больше 9 лет назад

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

debian логотип

CVE-2016-7395

CVSS3: 8.8
debian
больше 9 лет назад

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Wi ...

EPSS

Процентиль: 70%
0.00629
Низкий

8.8 High

CVSS3

CVE ID

CVE-2016-7395