Open mend-for-github-com[bot] opened 10 months ago
Unofficial mirror of the WebKit SVN repository
Library home page: https://github.com/WebKit/webkit.git
Found in HEAD commit: 67e433f207a0fc9c0fb2b8f7a2906f254c8c4b87
Found in base branch: master
/node_modules/gl/angle/src/libANGLE/renderer/d3d/d3d11/TextureStorage11.cpp
Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Publish Date: 2023-03-21
URL: CVE-2023-1531
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
Type: Upgrade version
Origin: https://crbug.com/1415330
Release Date: 2023-03-21
Fix Resolution: NO_fIX
CVE-2023-1531 - High Severity Vulnerability
Vulnerable Library - webkit96cf2aa4aeac1e4f03ee5cf45ac858b9313f1bd2
Unofficial mirror of the WebKit SVN repository
Library home page: https://github.com/WebKit/webkit.git
Found in HEAD commit: 67e433f207a0fc9c0fb2b8f7a2906f254c8c4b87
Found in base branch: master
Vulnerable Source Files (1)
/node_modules/gl/angle/src/libANGLE/renderer/d3d/d3d11/TextureStorage11.cpp
Vulnerability Details
Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Publish Date: 2023-03-21
URL: CVE-2023-1531
CVSS 3 Score Details (8.8)
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here.Suggested Fix
Type: Upgrade version
Origin: https://crbug.com/1415330
Release Date: 2023-03-21
Fix Resolution: NO_fIX