Bug 1216924

Summary: VUL-0: Google Chromium Vulkan SwiftShader Double Free Remote Code Execution Vulnerability
Product: [openSUSE] openSUSE Distribution Reporter: SMASH SMASH <smash_bz>
Component: SecurityAssignee: Callum Farmer <gmbr3>
Status: RESOLVED DUPLICATE QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P3 - Medium CC: Andreas.Stieger, stoyan.manolov
Version: Leap 15.6   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/384274/
Whiteboard:
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description SMASH SMASH 2023-11-07 04:09:44 UTC 
This vulnerability allows remote attackers to execute arbitrary code on affected
installations of Google Chromium-based browsers. User interaction is required to
exploit this vulnerability in that the target must visit a malicious page or
open a malicious file.

The specific flaw exists within Vulkan SwiftShader. The issue results from the
lack of validating the existence of an object prior to performing further free
operations on the object. An attacker can leverage this vulnerability to execute
code in the context of the current process.

Fixed in Chrome
117https://swiftshader-review.googlesource.com/c/SwiftShader/+/71928
Comment 1 Andreas Stieger 2023-11-11 16:10:51 UTC 
This is fixed at least as part of bug 1216783

*** This bug has been marked as a duplicate of bug 1216783 ***