Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.
The PDF renderer inside Google Chrome, known as PDFium, contains a memory corruption vulnerability that could be exploited by an adversary. PDFium is open-source software that is utilized in the Chrome browser and other applications. The software supports the use of JavaScript embedded inside PDFs and other specially crafted documents could corrupt the memory of the application, allowing an adversary to…
[[ This is only the beginning! Please visit the blog for the complete entry ]]
Article Link: http://feedproxy.google.com/~r/feedburner/Talos/~3/sBN4TTmd770/vuln-spotlight-chrome-pdfium-corruption-july-2020.html