High severity8.8NVD Advisory· Published Nov 15, 2023· Updated Jun 17, 2026
CVE-2023-6112
CVE-2023-6112
Description
Use after free in Navigation in Google Chrome prior to 119.0.6045.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- osv-coords7 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/opera&distro=openSUSE%20Leap%2015.4%20NonFreepkg:rpm/opensuse/opera&distro=openSUSE%20Leap%2015.5%20NonFreepkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP4pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP5
< 119.0.6045.159-bp155.2.58.1+ 6 more
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
- (no CPE)range: < 119.0.6045.159-1.1
- (no CPE)range: < 105.0.4970.21-lp154.2.62.1
- (no CPE)range: < 105.0.4970.21-lp155.3.21.1
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
- (no CPE)range: < 119.0.6045.159-bp155.2.58.1
Patches
Vulnerability mechanics
References
10- packetstormsecurity.com/files/176721/Chrome-content-NavigationURLLoaderImpl-FallbackToNonInterceptedRequest-Heap-Use-After-Free.htmlnvdThird Party Advisory
- chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_14.htmlnvdRelease NotesVendor Advisory
- security.gentoo.org/glsa/202311-11nvdThird Party Advisory
- security.gentoo.org/glsa/202312-07nvdThird Party Advisory
- www.debian.org/security/2023/dsa-5556nvdThird Party Advisory
- crbug.com/1499298nvdPermissions Required
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JHUI5HW7QXT3U74MJMTLUMF5REDO5HD5/nvdMailing List
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MN3JQGEC4EFQP3WTI33YBD3CLC3I7P4X/nvdMailing List
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWHRLW3GDNFBFSBHDD4QOPUPX7ORTUEC/nvdMailing List
- security.gentoo.org/glsa/202401-34nvd
News mentions
0No linked articles in our index yet.