CVE-2021-21159 – Google / Chrome – Heap-based buffer overflow

CVE-2021-21159 is a heap-based buffer overflow vulnerability impacting Google Chrome versions 88.0.4324.182 and earlier. A proof of concept (PoC) was not observed publicly or in the underground.

Summary:

CVE-2021-21159 is a heap-based buffer overflow vulnerability impacting Google Chrome versions 88.0.4324.182 and earlier. A proof of concept (PoC) was not observed publicly or in the underground.

PoC Links(if available):

Known Counter Measures:

Google addressed the vulnerability in a stable channel update by releasing Chrome version 89.0.4389.72.

Links to patches(if available)

https://chromereleases.googleblog.com/2021/03/stable-channel-update-for-desktop.html