[Chrome ITW sandbox escape] Integer overflow in SkSLVMCodeGenerator (skia)

4 comments

The bug is from April 2023 and has been closed for more than 14 weeks. This case is really interesting by the way.
- The issue had been made public only on July 25. The point of sharing the bug isn't notifying users to patch their browsers but to inform browser vulnerability researchers of a valuable data point.
  
  It was a very interesting sharing and I thank you for it I didn't mean to sound mean, I just wanted to clarify something.