First published: Fri Apr 29 2022(Updated: )
Type confusion in V8 in Google Chrome prior to 103.0.5060.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Credit: chrome-cve-admin@google.com chrome-cve-admin@google.com Bohan Liu @P4nda20371774 Tencent Security Xuanwu Lab
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome | <103.0.5060.53 | |
Fedoraproject Extra Packages For Enterprise Linux | =8.0 | |
Fedoraproject Fedora | =35 | |
Fedoraproject Fedora | =36 | |
Google Chrome | <103.0.5060.53 | 103.0.5060.53 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-2158 is a vulnerability in Google Chrome that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-2158 has a severity rating of 8.8 (high).
CVE-2022-2158 affects Google Chrome versions prior to 103.0.5060.53.
To fix CVE-2022-2158 in Google Chrome, update to version 103.0.5060.53 or later.
You can find more information about CVE-2022-2158 at the following references: [Link 1](https://chromereleases.googleblog.com/2022/06/stable-channel-update-for-desktop_21.html), [Link 2](https://crbug.com/1321078), [Link 3](https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5BQRTR4SIUNIHLLPWTGYSDNQK7DYCRSB/)