KLA12060
Multiple vulnerabilities in Google Chrome

Updated: 02/04/2021
Detect date
?
02/02/2021
Severity
?
Warning
Description

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

  1. Use after free vulnerability in Payments can be exploited to cause denial of service and execute arbitrary code.
  2. Heap buffer overflow vulnerability in Extensions can be exploited to cause denial of service.
  3. Heap buffer overflow vulnerability in Tab Groups can be exploited to cause denial of service.
  4. Use after free vulnerability in Fonts can be exploited to cause denial of service and execute arbitrary code.
  5. Implementation vulnerability in Skia can be exploited to potentially cause denial of service.
  6. Use after free vulnerability in Navigation can be exploited to cause denial of service and execute arbitrary code.
Affected products

Google Chrome earlier than 88.0.4324.146

Solution

Update to the latest version
Download Google Chrome

Original advisories

Stable Channel Update for Desktop

Impacts
?
ACE 
[?]

DoS 
[?]
Related products
Google Chrome
CVE-IDS
?
Find out the statistics of the vulnerabilities spreading in your region