VDB
CNVD-2023-100967
CNVD-2023-100967
PUBLISHED
Google Chrome是Google的一个浏览器。 Google Chrome 119.0.6045.159之前版本存在内存错误引用漏洞,该漏洞源于Garbage Collection功能负责释放内存的指令发生混乱。攻击者可利用该漏洞导致程序崩溃,任意代码执行等。
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chrome | 119.0.6045.159 |
Exploit Intelligence
- https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_14.html (circl)
- https://crbug.com/1497997 (circl)
- https://www.debian.org/security/2023/dsa-5556 (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWHRLW3GDNFBFSBHDD4QOPUPX7ORTUEC/ (circl)
- https://security.gentoo.org/glsa/202311-11 (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JHUI5HW7QXT3U74MJMTLUMF5REDO5HD5/ (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MN3JQGEC4EFQP3WTI33YBD3CLC3I7P4X/ (circl)
- https://security.gentoo.org/glsa/202312-07 (circl)
- https://security.gentoo.org/glsa/202401-34 (circl)
Timeline
- Nov 14, 2023 CVE Published
- May 30, 2026 Distribution Patch
References
- https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_14.html url
- https://crbug.com/1497997 url
- https://www.debian.org/security/2023/dsa-5556 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWHRLW3GDNFBFSBHDD4QOPUPX7ORTUEC/ url
- https://security.gentoo.org/glsa/202311-11 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JHUI5HW7QXT3U74MJMTLUMF5REDO5HD5/ url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MN3JQGEC4EFQP3WTI33YBD3CLC3I7P4X/ url
- https://security.gentoo.org/glsa/202312-07 url
- https://security.gentoo.org/glsa/202401-34 url