Medium CVE-2022-1868: Inappropriate implementation in Extensions API. Reported by Michał Bentkowski of Securitum on Medium CVE-2022-1867: Insufficient validation of untrusted input in Data Transfer. Medium CVE-2022-1866: Use after free in Tablet Mode. Medium CVE-2022-1865: Use after free in Bookmarks. Reported by Yuntao You of Bytedance Wuheng Lab on Medium CVE-2022-1864: Use after free in WebApp Installs. Medium CVE-2022-1863: Use after free in Tab Groups. Medium CVE-2022-1862: Inappropriate implementation in Extensions. High CVE-2022-1861: Use after free in Sharing. High CVE-2022-1860: Use after free in UI Foundations. Reported by Guannan Wang of Tencent Security Xuanwu Lab on High CVE-2022-1859: Use after free in Performance Manager. High CVE-2022-1858: Out of bounds read in DevTools. High CVE-2022-1857: Insufficient policy enforcement in File System API. Reported by Nan and Guang Gong of 360 Alpha Lab on High CVE-2022-1856: Use after free in User Education. High CVE-2022-1855: Use after free in Messaging. High CVE-2022-1854: Use after free in ANGLE. Critical CVE-2022-1853: Use after free in Indexed DB. Please see the Chrome Security Page for more information. Below, we highlight fixes that were contributed by external researchers. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed. Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix.
0 kommentar(er)
