CVE-2015-6760Google Chrome vulnerability

CWE-175 documents5 sources
Severity
7.5HIGHNVD
EPSS
1.0%
top 22.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedOct 15
Latest updateMay 17

Description

The Image11::map function in renderer/d3d/d3d11/Image11.cpp in libANGLE, as used in Google Chrome before 46.0.2490.71, mishandles mapping failures after device-lost events, which allows remote attackers to cause a denial of service (invalid read or write) or possibly have unspecified other impact via vectors involving a removed device.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome45.0.2454.101

🔴Vulnerability Details

2
GHSA
GHSA-6x23-5xx9-c9wx: The Image11::map function in renderer/d3d/d3d11/Image112022-05-17
OSV
CVE-2015-6760: The Image11::map function in renderer/d3d/d3d11/Image112015-10-15

📋Vendor Advisories

1
Red Hat
chromium-browser: Improper error handling in libANGLE2015-10-13

💬Community

1
Bugzilla
CVE-2015-6760 chromium-browser: Improper error handling in libANGLE2015-10-14