Описание
Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 99.0.4844.51-0ubuntu0.18.04.1 |
| devel | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | focal was not-affected [code not present] |
| focal | not-affected | code not present |
| impish | not-affected | code not present |
| jammy | not-affected | code not present |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | |
| upstream | released | 97.0.4692.99 |
Показывать по
Ссылки на источники
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.
Chromium: CVE-2022-0300 Use after free in Text Input Method Editor
Use after free in Text Input Method Editor in Google Chrome on Android ...
Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.
Уязвимость редактора методов ввода текста браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю выполнить произвольный код
6.8 Medium
CVSS2
8.8 High
CVSS3