Manuel Caballero

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 69.0.3497.81 **Description** The issue is related to an object lifecycle problem in Blink, a component of Google Chrome, which allows a remote attacker to bypass content security policy. This can be achieved via a crafted HTML page, potentially impacting the integrity of protected information due to insufficient input validation. **Recommendations** For Google Chrome versions prior to 69.0.3497.81, update to version 69.0.3497.81 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Adobe Flash Player versions prior to 10.0.42.34 Adobe AIR versions prior to 1.5.3 **Description** The issue allows remote attackers to obtain the names of local files via unknown vectors. This is due to an incomplete fix for a previous issue. **Recommendations** For Adobe Flash Player versions prior to 10.0.42.34, update to version 10.0.42.34 or later. For Adobe AIR versions prior to 1.5.3, update to version 1.5.3 or later.