CVE-2022-2163

CVE	CVE-2022-2163
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-07-28 02:15:00 UTC
Updated	2023-11-07 03:46:00 UTC
Description	Use after free in Cast UI and Toolbar in Google Chrome prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via UI interaction.

Problem Types: CWE-416

Type	Vendor	Product	Version	Update	Edition	Language
Application	Fedoraproject	Extra Packages For Enterprise Linux	8.0	All	All	All
Operating System	Fedoraproject	Fedora	35	All	All	All
Operating System	Fedoraproject	Fedora	36	All	All	All
Application	Google	Chrome	All	All	All	All

Reference	Source	Link	Tags
[SECURITY] Fedora 36 Update: chromium-103.0.5060.114-1.fc36 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[SECURITY] Fedora 35 Update: chromium-103.0.5060.114-1.fc35 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
Chrome Releases: Stable Channel Update for Desktop	MISC	chromereleases.googleblog.com
[SECURITY] Fedora 36 Update: chromium-103.0.5060.114-1.fc36 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities (GLSA 202208-35) — Gentoo security	GENTOO	security.gentoo.org
Chromium, Google Chrome, Microsoft Edge, QtWebEngine: Multiple Vulnerabilities (GLSA 202208-25) — Gentoo security	GENTOO	security.gentoo.org
[SECURITY] Fedora 35 Update: chromium-103.0.5060.114-1.fc35 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
1308341 - chromium - An open-source project to help move the web forward. - Monorail	MISC	crbug.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

179488 Debian Security Update for chromium (DSA 5168-1)
180894 Debian Security Update for chromium (DSA 5187-1)
181956 Debian Security Update for chromium (CVE-2022-2163)
282981 Fedora Security Update for chromium (FEDORA-2022-1d3d5a0341)
282982 Fedora Security Update for chromium (FEDORA-2022-0102ccc2a2)
376678 Google Chrome Prior to 103.0.5060.53 Multiple Vulnerabilities
376685 Microsoft Edge Based on Chromium Prior to 103.0.1264.37 Multiple Vulnerabilities
376734 Google Chrome Prior to 103.0.5060.134 Multiple Vulnerabilities
502831 Alpine Linux Security Update for chromium
502832 Alpine Linux Security Update for chromium
505721 Alpine Linux Security Update for chromium
505722 Alpine Linux Security Update for chromium
690886 Free Berkeley Software Distribution (FreeBSD) Security Update for chromium (b2a4c5f1-f1fe-11ec-bcd2-3065ec8fd3ec)
690900 Free Berkeley Software Distribution (FreeBSD) Security Update for chromium (27cc4258-0805-11ed-8ac1-3065ec8fd3ec)
710602 Gentoo Linux Chromium, Google Chrome, Microsoft Edge, QtWebEngine Multiple Vulnerabilities (GLSA 202208-25)
710606 Gentoo Linux Chromium, Google Chrome, Microsoft Edge Multiple Vulnerabilities (GLSA 202208-35)
752465 OpenSUSE Security Update for opera (openSUSE-SU-2022:10088-1)
752466 OpenSUSE Security Update for opera (openSUSE-SU-2022:10087-1)