cpe:/a:google:chrome:53.0.2785.143 CVE-2016-5184 2016-12-17T22:59:00.227-05:00 2018-01-04T21:30:57.620-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2016-12-19T20:58:00.320-05:00 BID 93528 GENTOO GLSA-201610-09 REDHAT RHSA-2016:2067 CONFIRM https://chromereleases.googleblog.com/2016/10/stable-channel-update-for-desktop.html CONFIRM https://crbug.com/630654 PDFium in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled object lifecycles in CFFL_FormFillter::KillFocusForAnnot, which allowed a remote attacker to potentially exploit heap corruption via crafted PDF files.