Low CVE-2023-3740: Insufficient validation of untrusted input in Themes. Medium CVE-2023-3738: Inappropriate implementation in Autofill. Reported by Narendra Bhati of Suma Soft Pvt. Medium CVE-2023-3737: Inappropriate implementation in Notifications. Medium CVE-2023-3736: Inappropriate implementation in Custom Tabs. Medium CVE-2023-3735: Inappropriate implementation in Web API Permission Prompts. Medium CVE-2023-3734: Inappropriate implementation in Picture In Picture. Medium CVE-2023-3733: Inappropriate implementation in WebApp Installs. Reported by Mark Brand of Google Project Zero on High CVE-2023-3732: Out of bounds memory access in Mojo. High CVE-2023-3730: Use after free in Tab Groups. High CVE-2023-3728: Use after free in WebRTC. High CVE-2023-3727: Use after free in WebRTC. Please see the Chrome Security Page for more information.
Below, we highlight fixes that were contributed by external researchers.
We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed. Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix.
0 kommentar(er)
