CVE-2024-1675
published 2024-02-21CVE-2024-1675: Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted…
PriorityP355high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
10.37%
95.1th percentile
Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Medium)
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chromium | chromium | >= 0 < 122.0.6261.57-1~deb12u1 | 122.0.6261.57-1~deb12u1 |
| chromium | chromium | >= 0 < 122.0.6261.57-1 | 122.0.6261.57-1 |
| chromium | chromium | >= 0 < 122.0.6261.57-1 | 122.0.6261.57-1 |
| debian | chromium | < chromium 122.0.6261.57-1~deb12u1 (bookworm) | chromium 122.0.6261.57-1~deb12u1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| chrome | < 122.0.6261.57 | 122.0.6261.57 | |
| chrome | >= 122.0.6261.57 < 122.0.6261.57 | 122.0.6261.57 | |
| msrc | microsoft_edge | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
vendor_redhat·2024-06-25·CVSS 5.5
CVE-2024-39276 [MEDIUM] CWE-402 kernel: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
kernel: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
Syzbot reports a warning as follows:
WARNING: CPU: 0 PID: 5075 at fs/mbcache.c:419 mb_cache_destroy+0x224/0x290
Modules linked in:
CPU: 0 PID: 5075 Comm: syz-executor199 Not tainted 6.9.0-rc6-gb947cc5bf6d7
RIP: 0010:mb_cache_destroy+0x224/0x290 fs/mbcache.c:419
Call Trace:
ext4_put_super+0x6d4/0xcd0 fs/ext4/super.c:1375
generic_shutdown_super+0x136/0x2d0 fs/super.c:641
kill_block_super+0x44/0x90 fs/super.c:1675
ext4_kill_sb+0x68/0xa0 fs/ext4/super.c:7327
[...]
This is because when finding an entry in ext4_xattr_block_cache_find(), if
ext4_sb_bread() returns -ENOMEM, t
Microsoft
Chromium: CVE-2024-1675 Insufficient policy enforcement in Download
vendor_msrc·2024-02-13·CVSS 8.8
CVE-2024-1675 [HIGH] Chromium: CVE-2024-1675 Insufficient policy enforcement in Download
Chromium: CVE-2024-1675 Insufficient policy enforcement in Download
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ:
Microsoft Edge Channel
Microsoft Edge Version
Date Released
Based on Chromium Version
Stable
122.0.2365.52
2/23/2024
122.0.6261.57/.58
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Debian
CVE-2024-1675: chromium - Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261...
vendor_debian·2024·CVSS 8.8
CVE-2024-1675 [HIGH] CVE-2024-1675: chromium - Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261...
Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Medium)
Scope: local
bookworm: resolved (fixed in 122.0.6261.57-1~deb12u1)
bullseye: open
forky: resolved (fixed in 122.0.6261.57-1)
sid: resolved (fixed in 122.0.6261.57-1)
trixie: resolved (fixed in 122.0.6261.57-1)
OSV
CVE-2024-1675: Insufficient policy enforcement in Download in Google Chrome prior to 122
osv·2024-02-21·CVSS 8.8
CVE-2024-1675 [HIGH] CVE-2024-1675: Insufficient policy enforcement in Download in Google Chrome prior to 122
Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Medium)
GHSA
GHSA-78w9-qxr3-hqhc: Insufficient policy enforcement in Download in Google Chrome prior to 122
ghsa_unreviewed·2024-02-21
CVE-2024-1675 [HIGH] CWE-284 GHSA-78w9-qxr3-hqhc: Insufficient policy enforcement in Download in Google Chrome prior to 122
Insufficient policy enforcement in Download in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Medium)
No detection rules found.
No public exploits indexed.
https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.htmlhttps://issues.chromium.org/issues/41486208https://lists.fedoraproject.org/archives/list/[email protected]/message/PWWBMVQTSERVBXSXCZVUKIMEDNQUQ7O3/https://lists.fedoraproject.org/archives/list/[email protected]/message/QDCMYQ3J45NHQ4EJREM3BJNNKB5BK4Y7/https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.htmlhttps://issues.chromium.org/issues/41486208https://lists.fedoraproject.org/archives/list/[email protected]/message/PWWBMVQTSERVBXSXCZVUKIMEDNQUQ7O3/https://lists.fedoraproject.org/archives/list/[email protected]/message/QDCMYQ3J45NHQ4EJREM3BJNNKB5BK4Y7/
2024-02-21
Published