CVE-2022-0802 Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 99.0.4844.51 allowed a remote attacker to hide the contents of the Omnibox.
This issue was addressed by disabling Full screen mode by default. Insecure handling of cookies in the HTTP protocol in Google V8 5.0 and
CVE-2022-0799 In earlier versions of Chrome, an attacker could perform local privilege escalation by uploading an offline installer file.
NOTE: this issue only affects Windows installations. Mac OS X and Linux installations are not affected. Apple released security updates for Mac OS X and
CVE-2022-0470 In V8, memory access out of bounds led to heap corruption. This could be exploited by a malicious page.
CVE-2018-6127 had been assigned these issues in Chromium. These issues were fixed in V8 version 5.6.8p131.
This issue was discovered by Dawid Golunski
CVE-2022-0465 An error in Extensions in Google Chrome prior to version 98.0.4758.80 allowed a remote attacker to exploit heap corruption.
CVE-2017-15417 was addressed by modifying the Extensions API. For more information, see our Finding Redress with CVE article. Chrome version prior to version 98.0.
CVE-2022-0457 V8 had an issue with type confusion, which allowed a remote attacker to exploit heap corruption.
This issue has been fixed by updating V8 to version 6.2.350.15.
CVE-2017-5667 In all versions of Google Chrome prior to 75.0.
Episode
00:00:00
00:00:00