Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00022.html | Mailing List Third Party Advisory |
http://packetstormsecurity.com/files/167066/Google-Chrome-78.0.3904.70-Remote-Code-Execution.html | Exploit Third Party Advisory VDB Entry |
https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html | Vendor Advisory |
https://crbug.com/1019226 | Permissions Required |
https://security.gentoo.org/glsa/202004-04 | Third Party Advisory |
Configurations
History
06 Oct 2022, 03:03
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/202004-04 - Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00022.html - Mailing List, Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/167066/Google-Chrome-78.0.3904.70-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry | |
CPE | cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* | |
CWE | ||
First Time |
Opensuse leap
Opensuse |
11 May 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2019-11-25 15:15
Updated : 2024-02-15 02:00
NVD link : CVE-2019-13720
Mitre link : CVE-2019-13720
CVE.ORG link : CVE-2019-13720
JSON object : View
Products Affected
- chrome
opensuse
- leap
CWE
CWE-416
Use After Free