Out of bounds write in JavaScript in Google Chrome before 73.0.3683.86 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Several vulnerabilities have been discovered in the chromium web browser
CVE-2019-5805
A use-after-free issue was discovered in the pdfium library
CVE-2019-5806
Wen Xu discovered an integer overflow issue in the Angle library
CVE-2019-5807
TimGMichaud discovered a memory corruption issue in the v8 javascript
library
CVE-2019-58 ...
The stable channel has been updated to 7403729131 for Windows, Mac, and Linux, which will roll out over the coming days/weeks
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix We will also retain restrictions if the bug exists in a third party librar ...
This Metasploit module exploits an issue in Chrome version 730368386 (64 bit) The exploit corrupts the length of a float in order to modify the backing store of a typed array The typed array can then be used to read and write arbitrary memory The exploit then uses WebAssembly in order to allocate a region of RWX memory, which is then replaced ...
Writeups on exploits covering a variety of topics: stack canaries, ROP gadgets, ret2libc, etc
exploit-writeups
tcp-echo-server
Simple TCP echo server with buffer overflow vulnerability (original source here)
Involves defeating stack canaries by leaking stack values and bypassing non-executable stack (-z noexecstack) via ROP (Return Oriented Programming) gadget to prepare and invoke a system() call
crbug-941743
Chrome V8 type confusion bug, assigned CVE-2019-5825
The co