CVE-2023-1532

CVE	CVE-2023-1532
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-03-21 21:15:00 UTC
Updated	2023-10-20 20:47:00 UTC
Description	Out of bounds read in GPU Video in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Problem Types: CWE-125

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	36	All	All	All
Operating System	Fedoraproject	Fedora	37	All	All	All
Operating System	Fedoraproject	Fedora	38	All	All	All
Application	Google	Chrome	All	All	All	All

Reference	Source	Link	Tags
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities (GLSA 202309-17) — Gentoo security	MISC	security.gentoo.org
Chrome Releases: Stable Channel Update for Desktop	MISC	chromereleases.googleblog.com
[SECURITY] Fedora 37 Update: chromium-112.0.5615.49-1.fc37 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
1421268 - chromium - An open-source project to help move the web forward. - Monorail	MISC	crbug.com
Chrome media::mojom::VideoFrame Missing Validation ≈ Packet Storm	MISC	packetstormsecurity.com
[SECURITY] Fedora 36 Update: chromium-112.0.5615.49-1.fc36 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
[SECURITY] Fedora 38 Update: chromium-112.0.5615.49-1.fc38 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

181675 Debian Security Update for chromium (DSA 5377-1)
184697 Debian Security Update for chromium (CVE-2023-1532)
199290 Ubuntu Security Notification for Chromium Vulnerabilities (USN-6021-1)
283817 Fedora Security Update for chromium (FEDORA-2023-0e77b3d321)
283821 Fedora Security Update for chromium (FEDORA-2023-3003165311)
283866 Fedora Security Update for chromium (FEDORA-2023-c93631749b)
283868 Fedora Security Update for chromium (FEDORA-2023-78e350cb88)
284193 Fedora Security Update for chromium (FEDORA-2023-f07892dd59)
284211 Fedora Security Update for chromium (FEDORA-2023-d6e0ee0741)
378123 Google Chrome Prior to 111.0.5563.110 Multiple Vulnerabilities
378128 Microsoft Edge Based on Chromium Prior to 111.0.1661.54/ Extended Version 110.0.1587.78 has Multiple Vulnerabilities
691092 Free Berkeley Software Distribution (FreeBSD) Security Update for chromium (c8b334e0-6e83-4575-81d1-f9d5803ceb07)
710759 Gentoo Linux Chromium, Google Chrome, Microsoft Edge Multiple Vulnerabilities (GLSA 202309-17)
754045 OpenSUSE Security Update for opera (openSUSE-SU-2023:0114-1)
754103 OpenSUSE Security Update for opera (openSUSE-SU-2023:0115-1)