tags:chromecross_cacheheap_overflow original link: CVE-2024-1283: Cross-{Cache, Bucket} Browser Exploit newsletter link: exploits.club Weekly Newsletter 21


Exploits Club Summary:

ALLLLLL the way back in newsletter 07 , we included a bug from @r3tr074 and have quietly been waiting to hear more about it after he hinted at a novel exploitation technique. Well, the wait is over and suffice to say that it was worth it. The Chromium issue became unrestricted this week, and it includes initial discussions around the bug, some back and forth with the graphics team, and finally a succinct write-up which includes information on the “Cross-cache / Cross-bucket overflow” exploit strategy.