Headline
CVE-2018-6156: Stable Channel Update for Desktop
Incorect derivation of a packet length in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
Chrome Releases
Release updates from the Chrome team
Related news
CVE-2019-25136: Security vulnerabilities fixed in - Firefox 70
A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70.