Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| CefSharp.Common(NuGet) | 0 | 85.3.130 | N/A |
| CefSharp.Wpf(NuGet) | 0 | 85.3.130 | N/A |
| CefSharp.WinForms(NuGet) | 0 | 85.3.130 | N/A |
| CefSharp.Wpf.HwndHost(NuGet) | 0 | 85.3.130 | N/A |
CVSS Metrics
