Mattias Buelens

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 88.0.4324.150 Description: A heap buffer overflow in the V8 JavaScript engine allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. This issue was actively exploited in the wild. The vulnerability is described as a heap-based buffer overflow, which could allow for the execution of arbitrary code. Recommendations: For Google Chrome versions prior to 88.0.4324.150, update to version 88.0.4324.150 or later to resolve the issue. As a temporary workaround, consider avoiding the use of potentially vulnerable JavaScript functions until a patch is applied. Restrict access to untrusted HTML pages to minimize the risk of exploitation. At the moment, there is no additional information about other mitigation measures.