Unrated severityNVD Advisory· Published May 23, 2019· Updated Aug 4, 2024
CVE-2019-5790
CVE-2019-5790
Description
An integer overflow leading to an incorrect capacity of a buffer in JavaScript in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Affected products
7- osv-coords5 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP3pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015
< 73.0.3683.75-lp150.206.1+ 4 more
- (no CPE)range: < 73.0.3683.75-lp150.206.1
- (no CPE)range: < 75.0.3770.90-bp150.213.3
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 75.0.3770.90-bp150.213.3
- (no CPE)range: < 75.0.3770.90-bp150.213.3
Patches
Vulnerability mechanics
References
3- lists.opensuse.org/opensuse-security-announce/2019-06/msg00085.htmlmitrevendor-advisoryx_refsource_SUSE
- chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.htmlmitrex_refsource_MISC
- crbug.com/914736mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.