CVE-2018-18356

HIGH

Google Chrome < 71.0.3578.80 - Use-After-Free via Skia Path Handling

Title source: llm

Description

An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

References (18)

Core 18

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2019:0373

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3897-1/

Issue Tracking x_refsource_misc

https://crbug.com/883666

Mailing List mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201903-04

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3896-1/

Mailing List mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html

Release Notes, Vendor Advisory x_refsource_confirm

https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2019:0374

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2019/dsa-4391

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:3803

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2019/dsa-4392

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2018/dsa-4352

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/106084

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201904-07

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2019:1144

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201908-18

Scores

CVSS v3 8.8

EPSS 0.0240

EPSS Percentile 85.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-190 CWE-416 CWE-787

Status published

Products (17)

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 18.04

canonical/ubuntu_linux 18.10

debian/debian_linux 8.0

debian/debian_linux 9.0

google/chrome < 71.0.3578.80

opensuse/leap 15.0

redhat/enterprise_linux_desktop 6.0

redhat/enterprise_linux_desktop 7.0

... and 7 more

Published Dec 11, 2018

Tracked Since Feb 18, 2026