{"id":"DEBIAN-CVE-2022-4191","details":"Use after free in Sign-In in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via profile destruction. (Chromium security severity: Medium)","modified":"2026-04-28T20:24:40.693431Z","published":"2022-11-30T00:15:10.877Z","upstream":["CVE-2022-4191"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2022-4191"}],"affected":[{"package":{"name":"chromium","ecosystem":"Debian:11","purl":"pkg:deb/debian/chromium?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"108.0.5359.71-2~deb11u1"}]}],"versions":["100.0.4896.127-1","100.0.4896.127-1~deb11u1","100.0.4896.60-1","100.0.4896.60-1~deb11u1","100.0.4896.75-1","100.0.4896.75-1~deb11u1","100.0.4896.88-1","100.0.4896.88-1~deb11u1","101.0.4951.41-1","101.0.4951.41-1~deb11u1","101.0.4951.41-2","101.0.4951.54-1","101.0.4951.64-1","101.0.4951.64-1~deb11u1","102.0.5005.115-1","102.0.5005.115-1~deb11u1","102.0.5005.61-1","102.0.5005.61-1~deb11u1","103.0.5060.114-1","103.0.5060.114-1~deb11u1","103.0.5060.134-1","103.0.5060.134-1~deb11u1","103.0.5060.53-1","103.0.5060.53-1~deb11u1","104.0.5112.101-1","104.0.5112.101-1~deb11u1","104.0.5112.79-1","104.0.5112.79-1~deb11u1","105.0.5195.102-1","105.0.5195.102-1~deb11u1","105.0.5195.125-1","105.0.5195.125-1~deb11u1","105.0.5195.52-1","105.0.5195.52-1~deb11u1","106.0.5249.103-1","106.0.5249.103-2","106.0.5249.119-1","106.0.5249.119-1~deb11u1","106.0.5249.61-1","106.0.5249.61-1~deb11u1","106.0.5249.91-1","106.0.5249.91-1~deb11u1","107.0.5304.110-1","107.0.5304.110-1~deb11u1","107.0.5304.110-2","107.0.5304.121-1","107.0.5304.121-1~deb11u1","107.0.5304.68-1","107.0.5304.68-1~deb11u1","107.0.5304.87-1","107.0.5304.87-1~deb11u1","108.0.5359.71-1","90.0.4430.212-1","93.0.4577.82-1","97.0.4692.71-0.1","97.0.4692.71-0.1~deb11u1","97.0.4692.99-1","97.0.4692.99-1~deb11u1","97.0.4692.99-1~deb11u2","98.0.4758.102-1","98.0.4758.102-1~deb11u1","98.0.4758.80-1","98.0.4758.80-1~deb11u1","99.0.4818.0-0.1","99.0.4844.51-1","99.0.4844.51-1~deb11u1","99.0.4844.51-2","99.0.4844.74-1","99.0.4844.74-1~deb11u1","99.0.4844.84-1","99.0.4844.84-1~deb11u1"],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-4191.json"}},{"package":{"name":"chromium","ecosystem":"Debian:12","purl":"pkg:deb/debian/chromium?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"108.0.5359.71-1"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-4191.json"}},{"package":{"name":"chromium","ecosystem":"Debian:13","purl":"pkg:deb/debian/chromium?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"108.0.5359.71-1"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-4191.json"}},{"package":{"name":"chromium","ecosystem":"Debian:14","purl":"pkg:deb/debian/chromium?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"108.0.5359.71-1"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-4191.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}