CVE-2024-5847 | THREATINT

Assigner	Chrome
Reserved	2024-06-11
Published	2024-06-11
Updated	2024-06-14

Description

Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

Problem types

Use after free

Product status

126.0.6478.54 before 126.0.6478.54

affected

References

https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html

https://issues.chromium.org/issues/341313077

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/

cve.org CVE-2024-5847

nvd.nist.gov CVE-2024-5847

Download JSON