CVE-2024-9123

Name
CVE-2024-9123
Description
Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_24.html
https://issues.chromium.org/issues/365884464

Match rules

CPE URI Source package Min version Max version
chrome >= 0 < 129.0.6668.70
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* chromium >= 0 < 129.0.6668.70

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
qt5-qtwebengine edge-community 5.15.17-r3 Bart Ribbers <bribbers@disroot.org> fixed
qt5-qtwebengine 3.20-community 5.15.16-r12 Bart Ribbers <bribbers@disroot.org> fixed