Platform External Skia vulnerabilities

7 known vulnerabilities affecting platform/external_skia.

Total CVEs
7
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
UNKNOWN7

Vulnerabilities

Page 1 of 1
CVE-2025-48622UNKNOWN≥ 15:0, < 15:2025-12-01≥ 16:0, < 16:2025-12-01+2 more2025-12-01
CVE-2025-48622 CVE-2025-48622: In ProcessArea of dng_misc_opcodes In ProcessArea of dng_misc_opcodes.cpp, there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2025-26416UNKNOWN≥ 15-next:0, < 15-next:2025-04-01≥ 15:0, < 15:2025-04-01+2 more2025-04-01
CVE-2025-26416 CVE-2025-26416: In initializeSwizzler of SkBmpStandardCodec In initializeSwizzler of SkBmpStandardCodec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2024-43767UNKNOWN≥ 12:0, < 12:2024-12-01≥ 12L:0, < 12L:2024-12-01+2 more2024-12-01
CVE-2024-43767 CVE-2024-43767: In prepare_to_draw_into_mask of SkBlurMaskFilterImpl In prepare_to_draw_into_mask of SkBlurMaskFilterImpl.cpp, there is a possible heap overflow due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2024-43768UNKNOWN≥ 12:0, < 12:2024-12-01≥ 12L:0, < 12L:2024-12-01+2 more2024-12-01
CVE-2024-43768 CVE-2024-43768: In skia_alloc_func of SkDeflate In skia_alloc_func of SkDeflate.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2024-43091UNKNOWN≥ 15-next:0, < 15-next:2024-11-01≥ 12:0, < 12:2024-11-01+4 more2024-11-01
CVE-2024-43091 CVE-2024-43091: In filterMask of SkEmbossMaskFilter In filterMask of SkEmbossMaskFilter.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2023-2136UNKNOWNKEV≥ 13-next:0, < 13-next:2023-07-01≥ 13:0, < 13:2023-07-012023-07-01
CVE-2023-2136 CVE-2023-2136: In multiple functions of SkSLFunctionDefinition In multiple functions of SkSLFunctionDefinition.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation.
osv
CVE-2021-0689UNKNOWN≥ 8.1:0, < 8.1:2021-09-01≥ 9:0, < 9:2021-09-01+2 more2021-09-01
CVE-2021-0689 CVE-2021-0689: In RGB_to_BGR1_portable of SkSwizzler_opts In RGB_to_BGR1_portable of SkSwizzler_opts.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv