CVE-2022-0097 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0097
28 Jan 2022 — Inappropriate implementation in DevTools in Google Chrome prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to to potentially allow extension to escape the sandbox via a crafted HTML page. Una implementación inapropiada en DevTools en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa permitir potencialmente que la extensión escapara del sandbox por medio de una página HTML dis... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •
CVE-2022-0098 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0098
28 Jan 2022 — Use after free in Screen Capture in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gestures. Un uso de memoria previamente liberada en Screen Capture en Google Chrome en Chrome OS versiones anteriores a 97.0.4692.71, permitía a un atacante que convencía a un usuario de llevar a cabo gestos de usuario específicos explotar potencialmente una corrupción de pila por medio de gest... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVE-2022-0301 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0301
28 Jan 2022 — Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en DevTools en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante que convenciera a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security iss... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVE-2022-0096 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0096
28 Jan 2022 — Use after free in Storage in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Storage en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or infor... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVE-2022-0118 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0118
28 Jan 2022 — Inappropriate implementation in WebShare in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially hide the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación inapropiada de WebShare en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto ocultar potencialmente el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •
CVE-2022-0307 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0307
28 Jan 2022 — Use after free in Optimization Guide in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Optimization Guide en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que convenciera a un usuario de participar en una interacción específica con el usuario explotar potencialmente una corrupción de la pila por... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVE-2021-4100 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-4100
28 Jan 2022 — Object lifecycle issue in ANGLE in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un problema del Ciclo de Vida de los Objetos en ANGLE en Google Chrome versiones anteriores a 96.0.4664.110, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of serv... • https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop_13.html • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVE-2022-0103 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0103
28 Jan 2022 — Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en SwiftShader en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVE-2022-0109 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0109
28 Jan 2022 — Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page. Una implementación inapropiada de Autofill en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto obtener información potencialmente confidencial por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of servi... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •
CVE-2022-0115 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0115
28 Jan 2022 — Uninitialized use in File API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Un uso no inicializado en File API en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto llevar a cabo un acceso a la memoria fuera de límites por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or ... • https://packetstorm.news/files/id/165879 • CWE-908: Use of Uninitialized Resource •