CVE-2023-5472
Summary
| CVE | CVE-2023-5472 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-10-25 18:17:00 UTC |
|---|
| Updated | 2024-01-31 17:15:00 UTC |
|---|
| Description | Use after free in Profiles in Google Chrome prior to 118.0.5993.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| Chrome Releases: Stable Channel Update for Desktop |
MISC |
chromereleases.googleblog.com |
|
| 1491296 -
chromium -
An open-source project to help move the web forward. -
Monorail |
MISC |
crbug.com |
|
| [SECURITY] Fedora 37 Update: chromium-118.0.5993.117-1.fc37 - package-announce - Fedora Mailing-Lists |
MISC |
lists.fedoraproject.org |
|
| [SECURITY] Fedora 39 Update: chromium-118.0.5993.117-1.fc39 - package-announce - Fedora Mailing-Lists |
MISC |
lists.fedoraproject.org |
|
| Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities (GLSA 202401-34) — Gentoo security |
|
security.gentoo.org |
|
| Debian -- Security Information -- DSA-5536-1 chromium |
MISC |
www.debian.org |
|
| [SECURITY] Fedora 38 Update: chromium-118.0.5993.117-1.fc38 - package-announce - Fedora Mailing-Lists |
MISC |
lists.fedoraproject.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 284685 Fedora Security Update for chromium (FEDORA-2023-a9062a0411)
- 284698 Fedora Security Update for chromium (FEDORA-2023-7f87c8b975)
- 285168 Fedora Security Update for chromium (FEDORA-2023-0b39dc9302)
- 378966 Google Chrome Prior to 118.0.5993.117 Multiple Vulnerabilities
- 378978 Microsoft Edge Based on Chromium Prior to 118.0.2088.76 Multiple Vulnerabilities
- 6000300 Debian Security Update for chromium (DSA 5536-1)
- 691341 Free Berkeley Software Distribution (FreeBSD) Security Update for chromium (db33e250-74f7-11ee-8290-a8a1599412c6)
- 710849 Gentoo Linux Chromium, Google Chrome, Microsoft Edge Multiple Vulnerabilities (GLSA 202401-34)
- 755224 OpenSUSE Security Update for opera (openSUSE-SU-2023:0354-1)
- 755225 OpenSUSE Security Update for opera (openSUSE-SU-2023:0353-1)
