CEF (Chromium Embedded Framework ) is a simple framework for embedding Chromium-based browsers in other applications. `CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory` does not check the size of the shared memory, which leads to out-of-bounds read outside the sandbox. This vulnerability was patched in commit 1f55d2e.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-01-12T21:16:06.709Z

Updated: 2024-08-01T22:27:36.148Z

Reserved: 2023-12-29T03:00:44.957Z

Link: CVE-2024-21639

cve-icon Vulnrichment

Updated: 2024-08-01T22:27:36.148Z

cve-icon NVD

Status : Modified

Published: 2024-01-12T22:15:45.750

Modified: 2024-11-21T08:54:46.790

Link: CVE-2024-21639

cve-icon Redhat

No data.