Headline

CVE-2022-3890: Stable Channel Update for Desktop

Heap buffer overflow in Crashpad in Google Chrome on Android prior to 107.0.5304.106 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chrome security severity: High)

1 year ago

CVE

Open in Source

#android #google #buffer_overflow #chrome

Tuesday, November 8, 2022

The kernel subsystem function check_permission_for_set_tokenid within OpenHarmony-v3.1.5 and prior versions has an UAF vulnerability which local attackers can exploit this vulnerability to escalate the privilege to root.

1 year ago

CVE

Open in Source

#vulnerability #linux #git

Drop What You're Doing and Update iOS, Android, and Windows

Plus: Major patches dropped this month for Chrome, Firefox, VMware, Cisco, Citrix, and SAP.

1 year ago

Wired

Open in Source

#vulnerability #web #ios #android #mac #windows #apple #google #microsoft #cisco #rce #vmware #buffer_overflow #samsung #auth #zero_day #chrome #firefox #sap #wifi

Debian Security Advisory 5275-1

Debian Linux Security Advisory 5275-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

1 year ago

Packet Storm

Open in Source

#linux #debian #dos #js #chrome