ALT-PU-2017-2656-1
Closed vulnerabilities
Published: 2018-08-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2017-15398
A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- 101692
- 101692
- RHSA-2017:3151
- RHSA-2017:3151
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://crbug.com/777728
- https://crbug.com/777728
- GLSA-201711-02
- GLSA-201711-02
- DSA-4024
- DSA-4024
Published: 2018-08-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2017-15399
A use after free in V8 in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Severity: HIGH (8.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
- 101692
- 101692
- RHSA-2017:3151
- RHSA-2017:3151
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2017/11/stable-channel-update-for-desktop.html
- https://crbug.com/776677
- https://crbug.com/776677
- GLSA-201711-02
- GLSA-201711-02
- DSA-4024
- DSA-4024