Unrated severityNVD Advisory· Published Nov 15, 2023· Updated Dec 16, 2025
CVE-2023-5997
CVE-2023-5997
Description
Use after free in Garbage Collection in Google Chrome prior to 119.0.6045.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Affected products
8- osv-coords7 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/opera&distro=openSUSE%20Leap%2015.4%20NonFreepkg:rpm/opensuse/opera&distro=openSUSE%20Leap%2015.5%20NonFreepkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP4pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP5
< 119.0.6045.159-bp155.2.58.1+ 6 more
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
- (no CPE)range: < 119.0.6045.159-1.1
- (no CPE)range: < 105.0.4970.21-lp154.2.62.1
- (no CPE)range: < 105.0.4970.21-lp155.3.21.1
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_14.htmlmitre
- crbug.com/1497997mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JHUI5HW7QXT3U74MJMTLUMF5REDO5HD5/mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MN3JQGEC4EFQP3WTI33YBD3CLC3I7P4X/mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWHRLW3GDNFBFSBHDD4QOPUPX7ORTUEC/mitre
- security.gentoo.org/glsa/202311-11mitre
- security.gentoo.org/glsa/202312-07mitre
- security.gentoo.org/glsa/202401-34mitre
- www.debian.org/security/2023/dsa-5556mitre
News mentions
0No linked articles in our index yet.