Mlfbrown

**Nome do software vulnerável e versões afetadas** Versões do Google Chrome anteriores à 81.0.4044.92 **Descrição** O problema está relacionado a um uso de memória não inicializada no WebRTC, o que pode levar à corrupção da pilha (heap). Um invasor remoto pode potencialmente explorar essa vulnerabilidade por meio de uma página HTML maliciosa, o que lhe permitiria acessar dados confidenciais, comprometer a integridade dos dados e causar uma negação de serviço. **Recomendações** Para versões anteriores à 81.0.4044.92, atualize para a versão 81.0.4044.92 ou posterior para resolver o problema. Como solução temporária, considere restringir o acesso à funcionalidade WebRTC até que a atualização seja aplicada.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 74.0.3729.131 **Description** The issue is related to an integer overflow in SQLite via WebSQL, which can be exploited by a remote attacker using a specially crafted HTML page. This could potentially lead to heap corruption, affecting the confidentiality, integrity, and availability of protected information. **Recommendations** For versions prior to 74.0.3729.131, update to version 74.0.3729.131 or later to resolve the issue. As a temporary workaround, consider restricting access to WebSQL in Google Chrome until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 66 **Description** A latent issue in the Prio library may cause data to be read from uninitialized memory for some functions, potentially leading to memory corruption. The vulnerability is related to a buffer overflow in memory, which could allow a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. **Recommendations** For versions prior to 66, update to version 66 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data until the update is applied.