Subscribe via feed.

Chrome PaintImage Deserialization Out-Of-Bounds Read

Posted by deepcore on July 12, 2022 – 4:26 pm

The code in cc::PaintImageReader::Read (cc::PaintImage*) does not properly check the incoming data when handling embedded image data, resulting in an out-of-bounds copy into the filter bitmap data.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »