CVE-2022-3195 In Storage in Google Chrome before 105.0.5195.125, a out of bounds memory write could happen.

CVE-2017-15418 In all releases up to and including 59.0.3071.92, a remote attacker could potentially use a timing side channel attack to steal data by observing visual behaviour.

CVE-2017-15417 In all releases up to and including 59.0.3071.86, a remote attacker could potentially steal data from Photo Viewer by manipulating input focus.

CVE-2017-15416 In all releases up to and including 57.0.2987.133, a remote attacker could potentially steal data from PDF Viewer by manipulating input focus.

CVE-2017-15415 In all releases up to and including 56.0.3051.92, a remote attacker could potentially steal data from XSS Auditor by manipulating input focus.

CVE-2017-15414 In all releases up to and including 56.0.3051.78, a remote attacker could potentially steal data from Sumatra PDF by manipulating input focus.

CVE-2017-15413 In all releases up to and including 56.0.3051.52, a remote attacker could potentially steal data from PDF Viewer by manipulating input focus.

CVE-2017-15412 In all releases up to and including 56.0.3051.40, a remote attacker could potentially steal data from Extensions by manipulating input focus.

CVE-2017-15411 In all releases up to and including 56.0.3051

2

. How to avoid these vulnerabilities

Patch your browser as soon as you can. If you can't patch it, consider using an alternative browser like Chrome.

CVE-2017-15410 In all releases up to and including 56.0.3051.11, a remote attacker could potentially steal data from a renderer process by manipulating input focus.

CVE-2017-15409 In all releases up to and including 56.0.3051, a remote attacker could potentially steal data from Chrome by manipulating input focus.

CVE-2017-15408 In all releases up to and including 54.0.2840.87, a remote attacker could potentially steal data from Chrome by manipulating input focus.

CVE-2017-15410 In all releases up to and including 56.0.3051.26, a remote attacker could potentially steal data from PDF Viewer by manipulating input focus.

CVE-2017-15410 In all releases up to and including 56.0.3051.26, a remote attacker could potentially steal data from PDF Viewer by manipulating input focus.

Timeline

Published on: 09/26/2022 16:15:00 UTC
Last modified on: 09/29/2022 17:15:00 UTC

References

• https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_14.html
• https://crbug.com/1358381
• https://security.gentoo.org/glsa/202209-23
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3195