Google VRP2 [0-Day] Issue 1335688 ($5,000) - Google Chrome ANGLE CompressedTexImage3D Heap Buffer Overflow Vulnerability Title Issue 1335688 - $5,000 - Google Chrome ANGLE CompressedTexImage3D Heap Buffer Overflow Summary A Heap-Based Buffer Overflow vulnerability exists in the TextureGL::setCompressedImage function. An attacker must open a arbitrary generated html file to exploit this vulnerability. Test environment macOS Monterey 12.4(21F79) Google Chrome 103.0.5060.53 Root Cause Analysis angle::Result TextureGL.. 2022. 11. 11. [0-Day] CVE-2022-1638 ($5,000) - Google Chrome V8 Internationalization Heap Buffer Overflow Vulnerability Title Integer Overflow Leading to OOB Write/Heap-based Buffer Overflow in icu_71::FormattedStringBuilder::insert Summary A OOB Write/Heap-based Buffer Overflow vulnerability exists in the icu_71::FormattedStringBuilder::insert An attacker must open a arbitrary generated HTML file to exploit this vulnerability. Security Severity 8.8 High (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) Test environment MacO.. 2022. 8. 7. 이전 1 다음