CVE-2024-21639

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-21639

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-21639.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-21639

Aliases

GHSA-m375-jw5x-x8mg

Published

2024-01-12T21:16:06Z

Modified

2025-10-21T19:32:22Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

OOB Access in CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory

Details

CEF (Chromium Embedded Framework ) is a simple framework for embedding Chromium-based browsers in other applications. CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory does not check the size of the shared memory, which leads to out-of-bounds read outside the sandbox. This vulnerability was patched in commit 1f55d2e.

Database specific

{
    "cwe_ids": [
        "CWE-125"
    ]
}

References

Affected packages

Git / github.com/chromiumembedded/cef

Affected ranges

Type: GIT
Repo: https://github.com/chromiumembedded/cef
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

1f55d2e12f62cfdfbf9da6968fde2f928982670b

Database specific

vanir_signatures

[
    {
        "source": "https://github.com/chromiumembedded/cef/commit/1f55d2e12f62cfdfbf9da6968fde2f928982670b",
        "target": {
            "file": "libcef/browser/osr/host_display_client_osr.cc"
        },
        "digest": {
            "line_hashes": [
                "182114888642407309289002422740730981595",
                "296728380801254310489291266876244496634",
                "241511323707073456792638107520557170878",
                "10727605419003596955656702577756804537",
                "243822518250932802393613637683933259708",
                "299680549457429420900426016945286924349",
                "251336482468436322243211565332479761014",
                "208378345422564264645486803523415692874",
                "212967058314038606452021376936875727844",
                "154530266926391543847892294392838129080",
                "290944518280409255956800925671705596064"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "signature_type": "Line",
        "signature_version": "v1",
        "id": "CVE-2024-21639-c8ef74f2"
    },
    {
        "source": "https://github.com/chromiumembedded/cef/commit/1f55d2e12f62cfdfbf9da6968fde2f928982670b",
        "target": {
            "file": "libcef/browser/osr/video_consumer_osr.cc"
        },
        "digest": {
            "line_hashes": [
                "182559361334402104883307413342929000010",
                "99365231113449201707149582469580869947",
                "16930715518199782558403055733526987617"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "signature_type": "Line",
        "signature_version": "v1",
        "id": "CVE-2024-21639-cbc8d9cd"
    },
    {
        "source": "https://github.com/chromiumembedded/cef/commit/1f55d2e12f62cfdfbf9da6968fde2f928982670b",
        "target": {
            "function": "CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory",
            "file": "libcef/browser/osr/host_display_client_osr.cc"
        },
        "digest": {
            "function_hash": "51077143238130847293850459808008072074",
            "length": 354.0
        },
        "deprecated": false,
        "signature_type": "Function",
        "signature_version": "v1",
        "id": "CVE-2024-21639-d25313f2"
    }
]