Pdknsk

**Nome do software vulnerável e versões afetadas** Versões do Google Chrome anteriores à 80.0.3987.87 **Descrição** O problema está relacionado ao uso de dados não inicializados no PDFium, um componente do Google Chrome, o que pode levar à corrupção da pilha (heap). Um invasor remoto pode potencialmente explorar essa vulnerabilidade por meio de um arquivo PDF malicioso, permitindo acesso não autorizado a informações e potencialmente comprometendo sua integridade e disponibilidade. **Recomendações** Para versões anteriores à 80.0.3987.87, atualize para a versão 80.0.3987.87 ou posterior para resolver o problema.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 74.0.3729.108 **Description** The issue is related to an integer overflow in the PDFium PDF content handler, which can lead to heap corruption. This can be exploited by a remote attacker using a specially crafted PDF file, potentially allowing them to compromise data integrity, gain unauthorized access to protected information, and cause a denial of service. **Recommendations** For versions prior to 74.0.3729.108, update to version 74.0.3729.108 or later to resolve the issue. As a temporary workaround, consider avoiding the use of PDF files from untrusted sources until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 74.0.3729.108 **Description** The issue is related to an integer overflow in the PDFium PDF content handler, which can lead to heap corruption. This can be exploited by a remote attacker using a specially crafted PDF file, potentially allowing them to compromise data integrity, gain unauthorized access to protected information, and cause a denial of service. **Recommendations** For versions prior to 74.0.3729.108, update to version 74.0.3729.108 or later to resolve the issue. As a temporary workaround, consider avoiding the use of PDF files from untrusted sources until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 67.0.3396.62 **Description** The issue is related to an off-by-one error in the PDFium component of Google Chrome, which could allow a remote attacker to perform an out-of-bounds memory write using a specially crafted PDF file. This could potentially lead to arbitrary code execution. **Recommendations** For Google Chrome versions prior to 67.0.3396.62, update to version 67.0.3396.62 or later to resolve the issue. As a temporary workaround, consider avoiding the use of PDF files from untrusted sources until the update is applied.