CVE-2022-3200 Heap buffer overflow in Internals in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to exploit heap corruption.
This issue was addressed by ensuring that the Heap::unmap() function calls abort() on all allocated memory. Firefox was not affected because it does not
CVE-2022-3198 An after free vulnerability in Google Chrome could be exploited to cause heap corruption.
CVE-2018-6050 was assigned this issue. As of writing this advisory, it is still unclear whether this issue can be exploited to achieve remote code execution.
CVE-2022-3052 Heap buffer overflow in the Window Manager in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via specific UI interactions.
This issue did not affect systems where Lacrosse was not installed. Google Chrome prior to 105.0.5195.52 on Pixel devices allowed remote attackers
CVE-2022-3046 An attacker who convinced a user to install a malicious extension could exploit heap corruption after an After Free in Google Chrome 105.0.5195.52.
Google advised users to always install extensions from trusted sources and avoid clicking on them unless they are known to be safe. Google Chrome prior
CVE-2022-3040 An after free vulnerability in Layout in Google Chrome before 105.0.5195.52 could lead to heap corruption.
Note that this issue was with the media plugin and has fixed in the latest media release. CVE-2018-6109 In Google Chrome prior to 105.0.
Episode
00:00:00
00:00:00