CVE-2022-0458 An after free in Thumbnail Tab Strip in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to exploit heap corruption.

CVE-2018-6040 had been assigned to this issue. Google received one vulnerability report related to CVE-2018-6040, which was marked as not critical. All other issues were marked as critical. Google did not issue any CVEs for these issues. Google was advised of another issue in the same library that was also publicly known. The issue had been assigned the following reference ID - 2038. The issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - CVE-2018-6059. This issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - CVE-2018-6060. This issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - CVE-2018-6061. This issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - CVE-2018-6059. This issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - CVE-2018-6060. This issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - CVE-2018-6061. This issue was resolved in version 98.

Checklist: Are you using the right version of Android?

Google had released a new version of the Android operating system, called Android Oreo. One of the features in this new version was an automatic security patching system that Google refers to as "Android Security Patch level." This feature will automatically update your device's software with the latest security patches for vulnerabilities that affect your device.
With this new feature, you don't have to do anything. The system does all of the hard work for you and updates your device when a new vulnerability is discovered. However, it's still important to stay on top of what vulnerabilities have been discovered in Android Oreo.

New Features and Improvements

The following new features and improvements have been released after the resolution of this issue:
- Google Photos now supports content moderation for people who manage your shared albums.
- The Google Assistant can now be used in a Spanish language environment.
- A reminder is now automatically displayed when adding an event to the Calendar app on a locked screen.
- Location selection has changed in the Google Maps app for Android so that users can more easily select their current location.
- Users can now add a map overview of their favorite places as shown below.

References:

- 2038: CVE-2018-6038
- 2039: CVE-2018-6039
- 2040: CVE-2018-6040
- 2041: CVE-2018-6041
- 4042: CVE-2018-6042
After the resolution of this issue, Google issued one new CVE - CVE-2018-6059. This issue was resolved in version 98.0.4758.80. After the resolution of this issue, Google issued one new CVE - 2011CVE.- 2018CVE.- 6059.- 6060.- 6061.- 6062.- 6063.- 6064.- 6065.- 6056

Summary

The following vulnerabilities in the version 98.0.4758.80 resolved in April 2018:

- CVE-2018-6059

Timeline

Published on: 04/05/2022 01:15:00 UTC
Last modified on: 04/08/2022 18:28:00 UTC

References

• https://crbug.com/1267060
• https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop.html
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0458