ROS-20240328-08

A vulnerability in the WebRTC technology of Google Chrome browser is related to the use of memory after its
freeing. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code or cause a denial of service using specially crafted malware.
arbitrary code or cause a denial of service via a specially crafted malicious web page.
web page

A vulnerability in the .avif Libavif encoding and decoding library for the Google Chrome and
Microsoft Edge is related to memory usage after it is freed when processing avif files.
Exploitation of the vulnerability could allow an attacker acting remotely to impact the
confidentiality, integrity and availability of protected information

Spellcheck vulnerability in Google Chrome and Microsoft Edge browsers is associated with
access to the resource via incompatible types. Exploitation of the vulnerability could allow an attacker,
acting remotely, to affect the confidentiality, integrity, and availability of protected information.
information

A vulnerability in the MediaStream component of Google Chrome browsers is related to the use of memory after it is released.
release. Exploitation of the vulnerability could allow a remote attacker to execute
arbitrary code

A vulnerability in the WebRTC technology implementation of Google Chrome and Microsoft Edge browsers is related to an operation exceeding the buffer boundaries in memory.
operation exceeds buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code.
remotely to execute arbitrary code or cause a denial of service via a specially crafted malicious HTML page.
malicious HTML page

V8 JavaScript script handler vulnerability in Google Chrome and Microsoft Edge browsers is related to
Accessing a resource via incompatible types. Exploitation of the vulnerability could allow an attacker,
acting remotely, to execute arbitrary code or cause a denial of service

A vulnerability in the CSS component of the Google Chrome browser is related to memory usage after it has been freed.
Exploitation of the vulnerability could allow a remote attacker to gain unauthorized
access to protected information using a specially crafted malicious web page.

Vulnerability in the WebAudio component of Google Chrome and Microsoft Edge browsers is related to memory utilization
after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely,
Affect the confidentiality, integrity, and availability of protected information

A vulnerability in the Blink web page display mechanism of Google Chrome browser is related to the use of memory after it has been freed.
memory after it has been freed. Exploitation of the vulnerability could allow a remote attacker,
to execute arbitrary code or cause a denial of service via a specially crafted malicious web page.
web page

A vulnerability in the Skia graphics library of the Google Chrome browser is caused by an integer overflow.
Exploitation of the vulnerability could allow an attacker acting remotely to execute an exit from the
an isolated program environment by injecting a specially crafted file

A vulnerability in the Mojo IPC library of Google Chrome and Microsoft Edge browsers is related to memory usage
after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely,
Affect the confidentiality, integrity and availability of protected information

Vulnerability in FedCM component of Google Chrome browser is related to memory usage after its release.
freeing. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code or cause a denial of service.
arbitrary code or cause a denial of service through the use of a specially crafted malicious
web page

A vulnerability in the .avif Libavif encoding and decoding library of the Google Chrome browser
is related to memory usage after it is freed. Exploitation of the vulnerability could allow
an attacker acting remotely to execute arbitrary code or cause a denial of service via a specially crafted malicious web malware.
A specially crafted malicious web page

A vulnerability in the Web Browser UI of Google Chrome and Microsoft Edge browsers is related to an incorrectly
incorrectly implemented security checks for standard elements. Exploitation of the vulnerability could allow
an attacker acting remotely to conduct spoofing attacks using a specially crafted HTML page

A vulnerability in a component of the Google Chrome browser is related to memory usage after it has been freed.
Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information.
access to protected information

V8 JavaScript script handler vulnerability in Google Chrome browser is related to accessing a resource via incompatible types.
incompatible types. Exploitation of the vulnerability could allow an attacker acting remotely to execute
arbitrary code or cause a denial of service through the use of a specially crafted malicious
web page

The ANGLE library vulnerability in Google Chrome and Microsoft Edge browsers is related to memory usage
after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely,
compromise the rendering process using a specially crafted HTML page

A vulnerability in the library for encoding and decoding .avif Libavif files in the Google Chrome and
Microsoft Edge is related to an operation exceeding buffer boundaries in memory when processing avif files.
Exploitation of the vulnerability could allow an attacker acting remotely to impact the
confidentiality, integrity and availability of protected information

A vulnerability in the Autofill function of Google Chrome and Microsoft Edge browsers is related to
incorrectly implemented security checks for standard elements. Exploitation of the vulnerability
could allow an attacker acting remotely to bypass security restrictions and gain
unauthorized access to protected information using a specially crafted HTML page

A vulnerability in the WebGPU computer graphics API of the Google Chrome and Microsoft Edge browsers
is related to memory usage after memory is freed. Exploitation of the vulnerability could allow
an attacker acting remotely to disclose protected information

A vulnerability in the Media Capture API of Google Chrome and Microsoft Edge browsers is related to the use of memory after its release.
memory usage after memory is freed. Exploitation of the vulnerability could allow an attacker,
acting remotely, to disclose protected information

A vulnerability in the ANGLE library of Google Chrome browser is related to an operation exceeding buffer boundaries in memory.
memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute
arbitrary code using a specially crafted HTML page

A vulnerability in the Extensions component of the Google Chrome browser exists due to insufficient input data validation.
input validation. Exploitation of the vulnerability could allow an attacker to install a malicious
extension and gain access to read files using a specially crafted HTML page

V8 JavaScript script handler vulnerability in Google Chrome and Microsoft Edge browsers is related to
an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker,
acting remotely, to execute arbitrary code or cause a denial of service

A vulnerability in the Search search function of the Side Panel control in Google Chrome and Microsoft Edge browsers is related to memory usage.
Chrome and Microsoft Edge browsers is related to memory usage after it is freed. Exploitation of the vulnerability
could allow an attacker acting remotely to execute arbitrary code