PT-2019-4595 · Google+5 · Skia+6

Publicado

2019-03-12

·

Atualizado

2024-06-15

·

CVE-2019-5798

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 73.0.3683.75
Description The issue is related to a lack of correct bounds checking in the Skia library of Google Chrome, allowing a remote attacker to perform an out of bounds memory read. This can be achieved via a crafted HTML page, potentially enabling the attacker to gain unauthorized access to information.
Recommendations For versions prior to 73.0.3683.75, update to version 73.0.3683.75 or later to resolve the issue.

Exploit

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

ALT-PU-2019-1529
BDU:2020-00687
CESA-2019_1265
CESA-2019_1267
CESA-2019_1269
CESA-2019_1308
CESA-2019_1309
CESA-2019_1310
CVE-2019-5798
DLA-1800-1
DLA-1806-1
DSA-4421-1
DSA-4448-1
DSA-4451-1
MGASA-2019-0190
MGASA-2019-0191
OPENSUSE-SU-2019:1062-1
OPENSUSE-SU-2019:1534-1
OPENSUSE-SU-2019:1664-1
OPENSUSE-SU-2019:1666-1
OPENSUSE-SU-2019_0343-1
OPENSUSE-SU-2019_1062-1
OPENSUSE-SU-2019_1484-1
OPENSUSE-SU-2019_1534-1
OPENSUSE-SU-2019_1666-1
OPENSUSE-SU-2024:10601-1
OPENSUSE-SU-2024:10681-1
OPENSUSE-SU-2024:12948-1
RHSA-2019:0708
RHSA-2019:1265
RHSA-2019:1267
RHSA-2019:1269
RHSA-2019:1308
RHSA-2019:1309
RHSA-2019:1310
RHSA-2019_0708
RHSA-2019_1265
RHSA-2019_1267
RHSA-2019_1269
RHSA-2019_1308
RHSA-2019_1309
RHSA-2019_1310
SUSE-SU-2019:1458-1
USN-3997-1

Produtos afetados

Alt Linux
Centos
Google Chrome
Red Hat
Skia
Suse
Ubuntu