CVE-2018-18343

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 71.0.3578.80

Description The issue is related to the Skia graphics library in Google Chrome, which contains defects in cryptographic algorithms. Exploitation of this issue may allow a remote attacker to impact the confidentiality, integrity, and availability of protected information using a specially crafted HTML page. The vulnerability is caused by incorrect handling of paths, leading to a use after free in Skia, which can potentially exploit heap corruption.

Recommendations For Google Chrome versions prior to 71.0.3578.80, update to version 71.0.3578.80 or later to resolve the issue. As a temporary workaround, consider restricting access to specially crafted HTML pages that could exploit the vulnerability in the Skia graphics library. Avoid using the affected Skia library until the issue is resolved.