CVE-2022-0606 An attacker could exploit heap corruption in Google Chrome to crash the browser.

CVE-2014-1731 Google Chrome prior to version 17 was vulnerable to an integer underflow while decoding TIFF images. When a user visited a TIFF page via Google Chrome, the content of the memory was copied into a buffer and then read back resulting in a buffer overflow. CVE-2014-1729 Google Chrome prior to version 17 was vulnerable to an integer underflow while decoding JPEG formats. When a user visited a JPEG page via Google Chrome, the content of the memory was copied into a buffer and then read back resulting in a buffer overflow. CVE-2014-1728 Google Chrome prior to version 17 was vulnerable to an integer underflow while decoding PNG formats. When a user visited a PNG page via Google Chrome, the content of the memory was copied into a buffer and then read back resulting in a buffer overflow. CVE-2014-1727 Google Chrome prior to version 17 was vulnerable to an integer underflow while decoding Vorbis (Ogg Vorbis) formats. When a user visited a Vorbis page via Google Chrome, the content of the memory was copied into a buffer and then read back resulting in a buffer overflow. CVE-2014-1725 Google Chrome prior to version 17 allowed remote attackers to cause a denial of service via a crafted HTML page that triggers many redirects. CVE-2014-1724 Google Chrome prior to version 17 allowed remote attackers to cause a denial of service via a crafted HTML page that triggers many redirects. CVE-2014

Overview of Google Chrome Vulnerabilities

Google Chrome recently experienced a widespread vulnerability which affects all versions since the release of version 17. This is one of the most widely used browsers and was found to be vulnerable to multiple vulnerabilities, including integer underflow, buffer overflow, and heap-based buffer overflows. This post will provide an overview of these vulnerabilities and how they affected Google Chrome prior to version 17. The goal of this blog post is not to say who is responsible for this issue but merely provide information about it.

Microsoft Edge

Microsoft Edge is the most feature-rich browser available. In addition to being a clean, modern browser with all the bells and whistles, it also supports extensions that take your online experience to a new level. If you need an advanced browser for your business, Microsoft Edge is the one for you.

Change log

-24-5-2016: Added CVE-2014-1725 -24-4-2016: Added CVE-2014-1728 -23-4-2016: Added CVE-2014-1729 -23-3-2016: Added CVE-2014-1730 -22-3-2016: Added CVEs 2014. 1731, 1732, 1733, and 1734.

Timeline

Published on: 04/05/2022 00:15:00 UTC
Last modified on: 04/08/2022 18:27:00 UTC

References

• https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html
• https://crbug.com/1288020
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0606