CVE-2023-4072
📋 TL;DR
This vulnerability allows a remote attacker to trigger out-of-bounds memory access in Chrome's WebGL implementation, potentially leading to heap corruption and arbitrary code execution. Users of Google Chrome versions prior to 115.0.5790.170 are affected when visiting malicious websites.
💻 Affected Systems
- Google Chrome
- Chromium-based browsers
📦 What is this software?
Chrome by Google
Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...
Learn more about Chrome →⚠️ Risk & Real-World Impact
Worst Case
Remote code execution with the same privileges as the Chrome process, potentially leading to full system compromise if Chrome is running with elevated privileges.
Likely Case
Browser crash (denial of service) or limited information disclosure from memory reads.
If Mitigated
Browser sandboxing may limit impact to browser process only, preventing full system compromise.
🎯 Exploit Status
Exploitation requires crafting malicious WebGL shaders and likely involves bypassing Chrome's sandbox for full impact.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 115.0.5790.170 and later
Vendor Advisory: https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop.html
Restart Required: Yes
Instructions:
1. Open Chrome. 2. Click the three-dot menu → Help → About Google Chrome. 3. Chrome will automatically check for and install updates. 4. Click 'Relaunch' to restart Chrome with the patched version.
🔧 Temporary Workarounds
Disable WebGL
allDisables WebGL rendering which prevents exploitation but breaks WebGL-dependent websites
chrome://flags/#disable-webgl → Disable
Restart Chrome
Use Chrome sandboxing
allEnsure Chrome sandbox is enabled to limit potential impact
chrome://flags/#enable-sandbox → Enabled
🧯 If You Can't Patch
- Restrict access to untrusted websites using web filtering/proxy
- Use alternative browser without WebGL support temporarily
🔍 How to Verify
Check if Vulnerable:
Check Chrome version in About Google Chrome (three-dot menu → Help → About Google Chrome)Check Version:
google-chrome --version (Linux) or chrome://version (all platforms)Verify Fix Applied:
Verify Chrome version is 115.0.5790.170 or higher📡 Detection & Monitoring
Log Indicators:
- Chrome crash reports with WebGL-related stack traces
- Unexpected Chrome process termination
Network Indicators:
- Requests to known malicious domains hosting exploit code
- Unusual WebGL shader downloads
SIEM Query:
source="chrome_crash_reports" AND (message="WebGL" OR message="out_of_bounds")🔗 References
- https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop.html
- https://crbug.com/1464038
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
- https://security.gentoo.org/glsa/202311-11
- https://security.gentoo.org/glsa/202312-07
- https://security.gentoo.org/glsa/202401-34
- https://www.debian.org/security/2023/dsa-5467
- https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop.html
- https://crbug.com/1464038
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
- https://security.gentoo.org/glsa/202311-11
- https://security.gentoo.org/glsa/202312-07
- https://security.gentoo.org/glsa/202401-34
- https://www.debian.org/security/2023/dsa-5467
