Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
The bug consists of improper memory handling (out of bounds read and out of bounds write — CWE-125 and CWE-787) in the Tint module responsible for graphics rendering in Chrome browser. An attacker delivers a specially crafted HTML page, whose processing by the vulnerable component causes access to memory areas exceeding the allocated buffer. This operation can be performed remotely, without user interaction beyond visiting the page itself, and requires no special privileges.
Successful exploitation of the vulnerability may allow an attacker to perform unauthorized read and write operations in the browser process memory, potentially leading to disclosure of sensitive data, data integrity violation, and arbitrary code execution (RCE) or application destabilization.
Google Chrome should be updated to version 145.0.7632.116 or newer, available through the browser's official update channel. Details in the manufacturer's references: https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_23.html
Google Chrome on macOS in versions earlier than 145.0.7632.116
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HApple macOS
OSApplewszystkie wersjeGoogle Chrome
APPGoogle< 145.0.7632.116< 145.0.7632.117Linux Kernel
OSLinuxwszystkie wersjeMicrosoft Windows
OSMicrosoftwszystkie wersje
Related vulnerabilities
Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Apple iOS/iPadOS/macOS — out-of-bounds write przy przetwarzaniu obrazu
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
Apple: Obejście Pointer Authentication w iOS, macOS i innych platformach