VDB
BDU%3A2023-02955
BDU%3A2023-02955
PUBLISHED
CVSS 10 CRITICAL
Уязвимость библиотеки SwiftShader веб-браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
Risk Scores
CVSS 2.0
10
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ООО «РусБИТех-Астра», Google Inc, АО "НППКТ" | Astra Linux Special Edition (запись в едином реестре российских программ №369), Google Chrome, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913) | |
| Chrome | 114.0.5735.90 |
Exploit Intelligence
- CIRCL published-proof-of-concept: CVE-2023-2929 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-2929 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-2929 (circl-sighting)
- https://security.gentoo.org/glsa/202311-11 (circl)
- https://crbug.com/1410191 (circl)
- https://www.debian.org/security/2023/dsa-5418 (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B6SAST6CB5KKCQKH75ER2UQ3ICYPHCIZ/ (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2LE64KGGOISKPKMYROSDT4K6QFVDIRF6/ (circl)
- https://security.gentoo.org/glsa/202401-34 (circl)
- https://wiki.astralinux.ru/astra-linux-se47-bulletin-2023-1227SE47MD (circl)
…and 4 more exploits
Timeline
- May 30, 2023 CVE Published
- Jul 17, 2023 PoC Published
- Aug 22, 2023 PoC Published
- Jan 19, 2024 CVE Updated
- Aug 16, 2024 PoC Published
- May 3, 2026 Distribution Patch
References
- https://chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop_30.html url
- https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.8/ url
- https://wiki.astralinux.ru/astra-linux-se17-bulletin-2023-1023SE17 url
- https://wiki.astralinux.ru/astra-linux-se16-bulletin-20231214SE16 url
- https://wiki.astralinux.ru/astra-linux-se47-bulletin-2023-1227SE47MD url
- https://crbug.com/1410191 url
- https://www.debian.org/security/2023/dsa-5418 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B6SAST6CB5KKCQKH75ER2UQ3ICYPHCIZ/ url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2LE64KGGOISKPKMYROSDT4K6QFVDIRF6/ url
- https://security.gentoo.org/glsa/202311-11 url
- https://security.gentoo.org/glsa/202401-34 url