Zhanjia Song

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 90.0.4430.212 **Description** The issue is related to a heap buffer overflow in the History component of Google Chrome, which can be exploited by a remote attacker who has compromised the renderer process. This can be achieved via a crafted HTML page, potentially allowing the attacker to exploit heap corruption. The vulnerability may enable the attacker to access confidential data, compromise data integrity, and cause a denial of service. **Recommendations** For versions prior to 90.0.4430.212, update to version 90.0.4430.212 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 83.0.4103.61 **Description** The issue is related to the use of memory after it has been freed in the WebRTC technology implementation in Google Chrome. This could allow a remote attacker to access confidential data, compromise its integrity, and cause a denial of service through a specially crafted HTML page. The exploitation may lead to heap corruption. **Recommendations** For versions prior to 83.0.4103.61, update to version 83.0.4103.61 or later to resolve the issue. As a temporary workaround, consider restricting access to WebRTC functionality until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 70 Thunderbird versions prior to 68.2 Firefox ESR versions prior to 68.2 **Description** The issue is related to a use-after-free error that occurs when following the value's prototype chain, allowing a reference to a locale to be retained, deleted, and then referenced again, resulting in a potentially exploitable crash. This could potentially allow a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. **Recommendations** For Firefox versions prior to 70, update to version 70 or later. For Thunderbird versions prior to 68.2, update to version 68.2 or later. For Firefox ESR versions prior to 68.2, update to version 68.2 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 69 Thunderbird versions prior to 68.1 Thunderbird versions prior to 60.9 Firefox ESR versions prior to 60.9 Firefox ESR versions prior to 68.1 **Description** The issue is related to a component of IndexedDB in web browsers, specifically affecting Firefox, Firefox ESR, and the Thunderbird email client. It involves an error in key deletion, which can lead to a use-after-free condition and a potentially exploitable crash. This could allow a remote attacker to access confidential data, compromise data integrity, and cause a denial of service. **Recommendations** For Firefox versions prior to 69, update to version 69 or later. For Thunderbird versions prior to 68.1, update to version 68.1 or later. For Thunderbird versions prior to 60.9, update to version 60.9 or later. For Firefox ESR versions prior to 60.9, update to version 60.9 or later. For Firefox ESR versions prior to 68.1, update to version 68.1 or later.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 62 Firefox ESR versions prior to 60.2 Thunderbird versions prior to 60.2.1 **Description** A use-after-free issue can occur when an IndexedDB index is deleted while still in use by JavaScript code, resulting in a potentially exploitable crash. This issue may allow a remote attacker to execute arbitrary code or cause the application to crash. **Recommendations** For Firefox versions prior to 62, update to version 62 or later to resolve the issue. For Firefox ESR versions prior to 60.2, update to version 60.2 or later to resolve the issue. For Thunderbird versions prior to 60.2.1, update to version 60.2.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 66.0.3359.117 Opera versions prior to 66.0.3359.117 **Description** The issue is related to an integer overflow that leads to a heap buffer-overflow in Skia, allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. **Recommendations** For Google Chrome versions prior to 66.0.3359.117, update to version 66.0.3359.117 or later. For Opera versions prior to 66.0.3359.117, update to version 66.0.3359.117 or later.