Unrated severityNVD Advisory· Published Jan 10, 2020· Updated Aug 5, 2024
CVE-2019-13767
CVE-2019-13767
Description
Use after free in media picker in Google Chrome prior to 79.0.3945.88 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- osv-coords4 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP3pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP1
< 79.0.3945.88-bp151.3.38.1+ 3 more
- (no CPE)range: < 79.0.3945.88-bp151.3.38.1
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 79.0.3945.88-bp151.3.38.1
- (no CPE)range: < 79.0.3945.88-bp151.3.38.1
Patches
Vulnerability mechanics
References
8- lists.opensuse.org/opensuse-security-announce/2020-01/msg00005.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N5CIQCVS6E3ULJCNU7YJXJPO2BLQZDTK/mitrevendor-advisoryx_refsource_FEDORA
- security.gentoo.org/glsa/202003-08mitrevendor-advisoryx_refsource_GENTOO
- www.debian.org/security/2020/dsa-4606mitrevendor-advisoryx_refsource_DEBIAN
- packetstormsecurity.com/files/156563/Chrome-DesktopMediaPickerController-WebContentsDestroyed-Use-After-Free.htmlmitrex_refsource_MISC
- chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop_17.htmlmitrex_refsource_MISC
- crbug.com/1031653mitrex_refsource_MISC
- seclists.org/bugtraq/2020/Jan/27mitremailing-listx_refsource_BUGTRAQ
News mentions
0No linked articles in our index yet.