Max May

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 63.0.3239.84 Opera (affected versions not specified) **Description** The issue is related to an inappropriate implementation in Skia canvas composite operations, allowing a remote attacker to leak cross-origin data via a crafted HTML page. This could potentially affect a significant number of devices worldwide, although an exact estimate is not provided. **Recommendations** For Google Chrome versions prior to 63.0.3239.84, update to version 63.0.3239.84 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.