CVE-2012-2874Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents2 sources
Severity
7.5HIGHNVD
EPSS
0.9%
top 24.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google ChromeOpensuse
Timeline
PublishedSep 26
Latest updateMay 14

Description

Skia, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write operation, a different vulnerability than CVE-2012-2883.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDgoogle/chrome22.0.1229.78+52
NVDopensuse/opensuse12.1, 12.2+1

🔴Vulnerability Details

2
GHSA
GHSA-53pv-hrm8-w4g5: Skia, as used in Google Chrome before 222022-05-14
GHSA
GHSA-vrvr-rv69-wvh3: Skia, as used in Google Chrome before 222022-05-14
CVE-2012-2874 — Google Chrome vulnerability | cvebase