First published: Fri Feb 17 2017(Updated: )
Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to potentially exploit a near null dereference via a crafted HTML page.
Credit: cve-coordination@google.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome | <=55.0.2883.87 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-5023 has been assigned a high severity rating due to its potential impact on user security.
To fix CVE-2017-5023, upgrade Google Chrome to version 56.0.2924.76 or later for Linux, Windows, or Mac, and version 56.0.2924.87 for Android.
CVE-2017-5023 affects Google Chrome versions prior to 56.0.2924.76 on Linux, Windows, Mac, and prior to 56.0.2924.87 on Android.
CVE-2017-5023 potentially allows remote attackers to exploit a near null dereference through a crafted HTML page.
There are no known effective workarounds for CVE-2017-5023; the best solution is to update to the latest version of Google Chrome.