CVE-2019-5798

CVE-2019-5798

Name

CVE-2019-5798

Description

Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Exploit	https://crbug.com/883596
Release Notes	https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html
Third Party Advisory	https://www.debian.org/security/2019/dsa-4451
Third Party Advisory	https://seclists.org/bugtraq/2019/May/67
Third Party Advisory	https://lists.debian.org/debian-lts-announce/2019/05/msg00038.html
UBUNTU	https://usn.ubuntu.com/3997-1/
SUSE	http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html
REDHAT	https://access.redhat.com/errata/RHSA-2019:1310
REDHAT	https://access.redhat.com/errata/RHSA-2019:1309
REDHAT	https://access.redhat.com/errata/RHSA-2019:1308
SUSE	http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html
SUSE	http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html
SUSE	http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00085.html

Type

URI

Exploit

https://crbug.com/883596

Release Notes

https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html

Third Party Advisory

https://www.debian.org/security/2019/dsa-4451

Third Party Advisory

https://seclists.org/bugtraq/2019/May/67

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2019/05/msg00038.html