Chris Salls

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 92.0.4515.107 **Description** The issue is related to a use after free vulnerability in the SQLite component of Google Chrome. This vulnerability can be exploited by a remote attacker, potentially allowing them to cause a denial of service or execute arbitrary code by opening a malicious web page. The exploitation is possible via a crafted HTML page, which may lead to heap corruption. **Recommendations** For versions prior to 92.0.4515.107, update to version 92.0.4515.107 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially malicious web pages to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 91.0.4472.77 **Description** The issue is related to an out of bounds read in the V8 JavaScript engine of Google Chrome, which can be exploited by a remote attacker using a crafted HTML page. This could potentially lead to stack corruption and allow the attacker to access confidential data or cause a denial of service. **Recommendations** For versions prior to 91.0.4472.77, update to version 91.0.4472.77 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable HTML pages until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 83.0.4103.61 **Description** The issue is related to a type confusion in the V8 JavaScript engine, allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. This could enable the attacker to access confidential data, compromise data integrity, and cause a denial of service. **Recommendations** For versions prior to 83.0.4103.61, update to version 83.0.4103.61 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially malicious HTML pages to minimize the risk of exploitation.