Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.
The Google Chrome web browser contains a use-after-free vulnerability in its WebGL component that could allow a user to execute arbitrary code in the context of the browser process. This vulnerability specifically exists in ANGLE, a compatibility layer between OpenGL and Direct3D that Chrome uses on Windows systems. An adversary could manipulate the memory layout of the browser in a way that they could gain...
[[ This is only the beginning! Please visit the blog for the complete entry ]]![]()
[[ This is only the beginning! Please visit the blog for the complete entry ]]