Use after free in Core in Google Chrome on Lacros prior to 111.0.5563.64 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. (Chromium security severity: Medium)
References
Link | Resource |
---|---|
https://chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop.html | Release Notes |
https://crbug.com/1348791 | Permissions Required |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2023-03-07 14:15
Updated : 2023-03-10 18:37
NVD link : CVE-2023-1227
Mitre link : CVE-2023-1227
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
- linux_and_chrome_os
- chrome