Home Tools Exploits & CVE's Chrome PaintImage Deserialization Out-Of-Bounds Read

Chrome PaintImage Deserialization Out-Of-Bounds Read

July 17, 2022

539

Authored by Google Security Research, Mark Brand

The code in cc::PaintImageReader::Read (cc::PaintImage*) does not properly check the incoming data when handling embedded image data, resulting in an out-of-bounds copy into the filter bitmap data.

advisories | CVE-2022-2010

Chrome PaintImage Deserialization Out-Of-Bounds Read

Follow us on Instagram @thecyberpost

EDITOR PICKS

Palo Alto PAN-OS Command Execution / Arbitrary File Creation

Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution

Gambio Online Webshop 4.9.2.0 Remote Code Execution

POPULAR POSTS

Restaurant Reservation System Patches Easy-to-Exploit XSS Bug

Sniffle – A Sniffer For Bluetooth 5 And 4.X LE

Domhttpx – A Google Search Engine Dorker With HTTP Toolkit Built...

POPULAR CATEGORY

Microsoft Word Remote Code Execution

BuilderOrcus Insecure Credential Storage

Windows Kernel Key Replication Issues