virus logo FortiClient Vulnerability

Google Chrome CVE-2015-3335 Weak Authentication Vulnerability

description-logoDescription

The NaClSandbox::InitializeLayerTwoSandbox function in components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc in Google Chrome before 42.0.2311.90 does not have RLIMIT_AS and RLIMIT_DATA limits for Native Client (aka NaCl) processes, which might make it easier for remote attackers to conduct row-hammer attacks or have unspecified other impact by leveraging the ability to run a crafted program in the NaCl sandbox.

affected-products-logoAffected Applications

Google Chrome

CVE References

CVE-2015-3335

Other References

https://chromereleases.googleblog.com/search/label/Stable%20updates
ID 21767
Created Jul 11, 2018
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Google
Patch manual
Application Google Chrome