Technical Information

In this vulnerability, Skia, a graphics rendering engine either may not validate the size of the image data, letting the attacker to craft a malicious file to perform buffer overflow or malicious font is rendered without checking its bound,causing heap buffer overflow.

Patch release date: Sep 09, 2024
Further information on this vulnerability is available at : CVE-2024-8636