PRIOn knowledge basePRION:CVE-2019-13734Design/Logic Flaw
Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 18.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 19.10 | |
| ubuntu_linux | eq | 16.04 | |
| debian_linux | eq | 9.0 | |
| debian_linux | eq | 10.0 | |
| fedora | eq | 30 | |
| fedora | eq | 31 | |
| chrome | lt | 79.0.3945.79 | |
| backports_sle | eq | 15.0 sp1 |
References
lists.opensuse.org/opensuse-security-announce/2019-12/msg00032.html
lists.opensuse.org/opensuse-security-announce/2019-12/msg00036.html
access.redhat.com/errata/RHSA-2019:4238
access.redhat.com/errata/RHSA-2020:0227
access.redhat.com/errata/RHSA-2020:0229
access.redhat.com/errata/RHSA-2020:0273
access.redhat.com/errata/RHSA-2020:0451
access.redhat.com/errata/RHSA-2020:0463
access.redhat.com/errata/RHSA-2020:0476
chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html
crbug.com/1025466
lists.fedoraproject.org/archives/list/[email protected]/message/2Z5M4FPUMDNX2LDPHJKN5ZV5GIS2AKNU/
lists.fedoraproject.org/archives/list/[email protected]/message/N5CIQCVS6E3ULJCNU7YJXJPO2BLQZDTK/
seclists.org/bugtraq/2020/Jan/27
security.gentoo.org/glsa/202003-08
usn.ubuntu.com/4298-1/
usn.ubuntu.com/4298-2/
www.debian.org/security/2020/dsa-4606
www.oracle.com/security-alerts/cpujan2022.html
Related
