Sunburst

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 111.0.5563.64 **Description** The issue is related to a stack buffer overflow in the Crash reporting component of Google Chrome on Windows. This allows a remote attacker who has compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. **Recommendations** For Google Chrome versions prior to 111.0.5563.64, update to version 111.0.5563.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the Crash reporting component until a patch is available. Avoid using specially crafted HTML pages that could exploit the stack buffer overflow in the Crash reporting component.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 95.0.4638.54 **Description** The issue is related to an out of bounds read in the WebAudio component of Google Chrome, which can potentially allow a remote attacker to exploit heap corruption via a crafted HTML page. This could enable the attacker to bypass existing security restrictions. **Recommendations** For Google Chrome versions prior to 95.0.4638.54, update to version 95.0.4638.54 or later to resolve the issue.