CVE-2023-1529

CVE	CVE-2023-1529
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-03-21 21:15:00 UTC
Updated	2023-10-20 20:43:00 UTC
Description	Out of bounds memory access in WebHID in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a malicious HID device. (Chromium security severity: High)

Problem Types: CWE-787

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	36	All	All	All
Operating System	Fedoraproject	Fedora	37	All	All	All
Operating System	Fedoraproject	Fedora	38	All	All	All
Application	Google	Chrome	All	All	All	All

Reference	Source	Link	Tags
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities (GLSA 202309-17) — Gentoo security	MISC	security.gentoo.org
Chrome Releases: Stable Channel Update for Desktop	MISC	chromereleases.googleblog.com
[SECURITY] Fedora 37 Update: chromium-112.0.5615.49-1.fc37 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
1419718 - chromium - An open-source project to help move the web forward. - Monorail	MISC	crbug.com
[SECURITY] Fedora 36 Update: chromium-112.0.5615.49-1.fc36 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
[SECURITY] Fedora 38 Update: chromium-112.0.5615.49-1.fc38 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

181675 Debian Security Update for chromium (DSA 5377-1)
182431 Debian Security Update for chromium (CVE-2023-1529)
199290 Ubuntu Security Notification for Chromium Vulnerabilities (USN-6021-1)
283817 Fedora Security Update for chromium (FEDORA-2023-0e77b3d321)
283821 Fedora Security Update for chromium (FEDORA-2023-3003165311)
283866 Fedora Security Update for chromium (FEDORA-2023-c93631749b)
283868 Fedora Security Update for chromium (FEDORA-2023-78e350cb88)
284193 Fedora Security Update for chromium (FEDORA-2023-f07892dd59)
284211 Fedora Security Update for chromium (FEDORA-2023-d6e0ee0741)
378123 Google Chrome Prior to 111.0.5563.110 Multiple Vulnerabilities
378128 Microsoft Edge Based on Chromium Prior to 111.0.1661.54/ Extended Version 110.0.1587.78 has Multiple Vulnerabilities
502943 Alpine Linux Security Update for qt5-qtwebengine
502996 Alpine Linux Security Update for qt5-qtwebengine
503237 Alpine Linux Security Update for qt5-qtwebengine
506194 Alpine Linux Security Update for qt5-qtwebengine
691092 Free Berkeley Software Distribution (FreeBSD) Security Update for chromium (c8b334e0-6e83-4575-81d1-f9d5803ceb07)
710759 Gentoo Linux Chromium, Google Chrome, Microsoft Edge Multiple Vulnerabilities (GLSA 202309-17)
754045 OpenSUSE Security Update for opera (openSUSE-SU-2023:0114-1)
754103 OpenSUSE Security Update for opera (openSUSE-SU-2023:0115-1)