Published: 27/10/2017 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Use of an uninitialized value in Skia in Google Chrome before 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
debian debian linux 9.0

Several vulnerabilities have been discovered in the chromium web browser CVE-2017-5111 Luat Nguyen discovered a use-after-free issue in the pdfium library CVE-2017-5112 Tobias Klein discovered a buffer overflow issue in the webgl library CVE-2017-5113 A buffer overflow issue was discovered in the skia library CVE-2017-5114 ...

Use of an uninitialized value in Skia in Google Chrome prior to 610316379 for Mac, Windows, and Linux, and 610316381 for Android, allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page ...

A use of initialized value issue has been found in the Skia component of the Chromium browser < 610316379 ...

CWE-119 https://security.gentoo.org/glsa/201709-15 https://access.redhat.com/errata/RHSA-2017:2676 https://crbug.com/725127 http://www.securitytracker.com/id/1039291 http://www.securityfocus.com/bid/100610 http://www.debian.org/security/2017/dsa-3985 https://chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.html https://nvd.nist.gov https://www.debian.org/security/./dsa-3985

CVE-2017-5119

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect