chromium is vulnerable to Out-of-bounds Read. Vulnerability is available within ‘GPU Video’ in ‘Google Chrome’ which allows an attacker to commit heap corruption via a crafter HTML page.
packetstormsecurity.com/files/171959/Chrome-media-mojom-VideoFrame-Missing-Validation.html
chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop_21.html
crbug.com/1421268
lists.fedoraproject.org/archives/list/[email protected]/message/FG3CRADL7IL5IHK4NCHG4LAYLKHFXETX/
lists.fedoraproject.org/archives/list/[email protected]/message/HO3QZY4UQFP4XNF43ILMVVOABMB7KAQ5/
lists.fedoraproject.org/archives/list/[email protected]/message/NGWWGQULJ7QRNP4GY57HE7OO7VMRWMPN/
security-tracker.debian.org/tracker/CVE-2023-1532
security.gentoo.org/glsa/202309-17