CVE-2022-1477 An after free vulnerability in Google Chrome allowed a remote attacker to exploit heap corruption.

CVE-2017-15411 was addressed by addressing unsafe casts in the DOM. On Windows, this issue was addressed with improved memory handling. On Mac, this issue was addressed with improved memory handling. On Linux, a fix was implemented to prevent remote code execution on CPU with the AMD32 instruction set. On Windows, this issue was addressed by preventing remote code execution on 32-bit systems. A fix was implemented to prevent a potential use-after-free in WebGL. This issue was addressed by implementation of a ShaderStorage buffer. On Linux, this issue was addressed by implementing a SIGSEV guard in the XVID v1 demuxer. This issue was addressed by addressing a heap overflow in the XRENDER device. This issue was addressed by addressing a race condition in XRENDER processing. This issue was addressed by updating the XRENDER pipeline to limit the amount of work that can be processed in a single invocation of the pipeline. On macOS, this issue was addressed by updating the XRENDER pipeline to limit the amount of work that can be processed in a single invocation of the pipeline. This issue was addressed by implementing a SIGSEV guard in the OSM unmuxer. A fix was implemented to prevent remote code execution via a malformed mp4 file. A fix was implemented to prevent WebRTC from leaking information about media to other domains in web video scenarios. A fix was implemented to prevent WebGL from leaking information about media

Vulnerability summary

A remote code execution vulnerability was addressed with a fix that prevents remote code execution on 32-bit systems. A remote code execution vulnerability was addressed with a fix that prevents an use-after-free in WebGL. A heap overflow in the XRENDER device was addressed with a fix that addresses a race condition in XRENDER processing. A remote code execution vulnerability was addressed by addressing a potential use-after-free in WebGL.

Security update to address CVE-2017-15411

A security update was released to address the vulnerabilities listed in CVE-2017-15411. The update includes improvements for Windows, Mac, Linux, and WebRTC.

What is the most recent version of Adobe Flash Player?

Adobe Flash Player is a web browser plugin that allows you to display a graphical interface on your computer. It includes features like video and animation, scripted content for games and other applications, support for rich media elements, the ability to create animated advertisements, and many more.
The most recent version of Adobe Flash Player is currently 18.0.0.203.

Timeline

Published on: 07/26/2022 22:15:00 UTC
Last modified on: 08/15/2022 11:16:00 UTC

References

• https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_26.html
• https://crbug.com/1313905
• https://security.gentoo.org/glsa/202208-25
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1477