Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
References
Configurations
History
21 Nov 2024, 09:48
Type | Values Removed | Values Added |
---|---|---|
References | () https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html - Third Party Advisory | |
References | () https://issues.chromium.org/issues/341095523 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/ - Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPU7AB53QQVNTBPGRMJRY5SXJNYWW3FX/ - Third Party Advisory |
20 Jun 2024, 13:05
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-416 | |
References | () https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html - Third Party Advisory | |
References | () https://issues.chromium.org/issues/341095523 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/ - Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPU7AB53QQVNTBPGRMJRY5SXJNYWW3FX/ - Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
First Time |
Fedoraproject
Google chrome Fedoraproject fedora |
14 Jun 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Jun 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
13 Jun 2024, 18:36
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
11 Jun 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-11 21:15
Updated : 2024-11-21 09:48
NVD link : CVE-2024-5846
Mitre link : CVE-2024-5846
CVE.ORG link : CVE-2024-5846
JSON object : View
Products Affected
- chrome
fedoraproject
- fedora
CWE
CWE-416
Use After Free