CVE-2017-15418

N/A

Descripcion

Use of uninitialized memory in Skia in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado8/28/2018

Ultima modificacion11/21/2024

Fuentenvd

Avistamientos honeypot0

Productos afectados

debian:debian_linuxgoogle:chromeredhat:enterprise_linux_desktopredhat:enterprise_linux_serverredhat:enterprise_linux_workstation

Debilidades (CWE)

CWE-119

Referencias

https://access.redhat.com/errata/RHSA-2017:3401(chrome-cve-admin@google.com)

https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html(chrome-cve-admin@google.com)

https://crbug.com/765858(chrome-cve-admin@google.com)

https://security.gentoo.org/glsa/201801-03(chrome-cve-admin@google.com)

https://www.debian.org/security/2017/dsa-4064(chrome-cve-admin@google.com)

https://access.redhat.com/errata/RHSA-2017:3401(af854a3a-2127-422b-91ae-364da2661108)

https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html(af854a3a-2127-422b-91ae-364da2661108)

https://crbug.com/765858(af854a3a-2127-422b-91ae-364da2661108)

https://security.gentoo.org/glsa/201801-03(af854a3a-2127-422b-91ae-364da2661108)

https://www.debian.org/security/2017/dsa-4064(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.