What the vulnerability does

01Description

Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

Key dates

02Disclosure timeline

September 24, 2024 CVE published
November 20, 2025 Record updated