CVE-2023-5476
Summary
| CVE | CVE-2023-5476 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-10-11 23:15:00 UTC |
|---|
| Updated | 2024-01-31 17:15:00 UTC |
|---|
| Description | Use after free in Blink History in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| QtWebEngine: Multiple Vulnerabilities (GLSA 202312-07) — Gentoo security |
|
security.gentoo.org |
Third Party Advisory |
| Debian -- Security Information -- DSA-5526-1 chromium |
MISC |
www.debian.org |
|
| QtWebEngine: Multiple Vulnerabilities (GLSA 202311-11) — Gentoo security |
|
security.gentoo.org |
Third Party Advisory |
| 1474253 -
chromium -
An open-source project to help move the web forward. -
Monorail |
MISC |
crbug.com |
|
| Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities (GLSA 202401-34) — Gentoo security |
|
security.gentoo.org |
|
| Chrome Releases: Stable Channel Update for Desktop |
MISC |
chromereleases.googleblog.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 284622 Fedora Security Update for chromium (FEDORA-2023-1c6a20aa0a)
- 284649 Fedora Security Update for chromium (FEDORA-2023-8c9fd2a001)
- 285168 Fedora Security Update for chromium (FEDORA-2023-0b39dc9302)
- 378932 Google Chrome Prior to 118.0.5993.70 Multiple Vulnerabilities
- 378943 Microsoft Edge Based on Chromium Prior to 118.0.2088.46 Multiple Vulnerabilities
- 506211 Alpine Linux Security Update for qt6-qtwebengine
- 6000296 Debian Security Update for chromium (DSA 5526-1)
- 691324 Free Berkeley Software Distribution (FreeBSD) Security Update for chromium (07ee8c14-68f1-11ee-8290-a8a1599412c6)
- 710797 Gentoo Linux QtWebEngine Multiple Vulnerabilities (GLSA 202311-11)
- 710809 Gentoo Linux QtWebEngine Multiple Vulnerabilities (GLSA 202312-07)
- 710849 Gentoo Linux Chromium, Google Chrome, Microsoft Edge Multiple Vulnerabilities (GLSA 202401-34)
- 755146 OpenSUSE Security Update for opera (openSUSE-SU-2023:0338-1)
- 755147 OpenSUSE Security Update for opera (openSUSE-SU-2023:0337-1)
