Skip Navigation
Exploit Development @infosec.pub udunadan @infosec.pub

[Chrome ITW sandbox escape] Integer overflow in SkSLVMCodeGenerator (skia)

4

You're viewing a single thread.

4 comments
  • The bug is from April 2023 and has been closed for more than 14 weeks. This case is really interesting by the way.

    • The issue had been made public only on July 25. The point of sharing the bug isn't notifying users to patch their browsers but to inform browser vulnerability researchers of a valuable data point.

      • It was a very interesting sharing and I thank you for it I didn't mean to sound mean, I just wanted to clarify something.