Описание
In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra/focal | DNE | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | released | 1:128.12.0+build1-0ubuntu0.22.04.1 |
| noble | not-affected | 2:1snap1-0ubuntu3 |
| oracular | not-affected | |
| plucky | not-affected | |
| upstream | released | 1:128.8.0esr-1 |
Показывать по
EPSS
7.8 High
CVSS3
Связанные уязвимости
In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds ...
In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Уязвимость компонента SkRegion.cpp веб-браузера Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
EPSS
7.8 High
CVSS3