Avihay Cohen

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 81.0.4044.92 **Description** The issue is related to a type confusion in the V8 JavaScript engine, allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. This could lead to unauthorized access to confidential data, disruption of data integrity, and denial of service. **Recommendations** For versions prior to 81.0.4044.92, update to version 81.0.4044.92 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 80.0.3987.149 **Description** The issue is related to an inappropriate implementation in the V8 engine of Google Chrome, which can lead to heap corruption. A remote attacker can potentially exploit this via a crafted HTML page. **Recommendations** For versions prior to 80.0.3987.149, update to version 80.0.3987.149 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 80.0.3987.87 **Description** The issue is related to a buffer overflow in the SQLite component of Google Chrome, potentially allowing a remote attacker to gain unauthorized access to information and compromise its integrity and availability through a specially crafted HTML page. It involves inappropriate implementation in JavaScript, which can lead to heap corruption. **Recommendations** For versions prior to 80.0.3987.87, update to version 80.0.3987.87 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable JavaScript components until a patch is applied. Avoid using specially crafted HTML pages that could exploit the heap corruption vulnerability.