1737728 – (CVE-2019-5863) CVE-2019-5863 chromium-browser: Use-after-free in WebUSB on Windows

Bug 1737728 (CVE-2019-5863) - CVE-2019-5863 chromium-browser: Use-after-free in WebUSB on Windows

Summary: CVE-2019-5863 chromium-browser: Use-after-free in WebUSB on Windows

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2019-5863
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1735500
TreeView+	depends on / blocked

Reported:	2019-08-06 06:55 UTC by Tomas Hoger
Modified:	2025-06-10 04:58 UTC (History)
CC List:	4 users (show)
Fixed In Version:	chromium-browser 76.0.3809.87
Clone Of:
Environment:
Last Closed:	2019-08-06 07:01:02 UTC
Embargoed:

Attachments	(Terms of Use)

Description Tomas Hoger 2019-08-06 06:55:19 UTC

An use-after-free flaw was found in the WebUSB on Windows component of the Chromium browser.

Upstream bug(s):

https://code.google.com/p/chromium/issues/detail?id=943494

External References:

https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html

Comment 1 Tomas Hoger 2019-08-06 07:01:02 UTC

This issue is only reported as affecting Chrome/Chromium on Windows platform, and hence would not be applicable to Linux builds.

Note You need to log in before you can comment on or make changes to this bug.