Описание
Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Отчет
In general, this flaw be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 8 | firefox | Not affected | ||
| Red Hat Enterprise Linux 8 | thunderbird | Not affected | ||
| Red Hat Enterprise Linux 6 | firefox | Fixed | RHSA-2018:3831 | 17.12.2018 |
| Red Hat Enterprise Linux 6 | thunderbird | Fixed | RHSA-2019:0159 | 24.01.2019 |
| Red Hat Enterprise Linux 6 Supplementary | chromium-browser | Fixed | RHSA-2018:3004 | 24.10.2018 |
| Red Hat Enterprise Linux 7 | firefox | Fixed | RHSA-2018:3833 | 17.12.2018 |
| Red Hat Enterprise Linux 7 | thunderbird | Fixed | RHSA-2019:0160 | 24.01.2019 |
Показывать по
Дополнительная информация
Статус:
EPSS
8.8 High
CVSS3
Связанные уязвимости
Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Incorrect texture handling in Angle in Google Chrome prior to 70.0.353 ...
Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Уязвимость библиотеи angle веб-браузера Chrome, позволяющая нарушителю выполнить произвольный код
EPSS
8.8 High
CVSS3