CVE-2020-6796 log

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
A missing bounds check on shared memory read in the parent process has been found in Firefox before 73.0. A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This could have caused memory corruption and a potentially exploitable crash.
Group Package Affected Fixed Severity Status Ticket
AVG-1096 firefox 72.0.2-1 73.0-1 Critical Fixed
Date Advisory Group Package Severity Description
11 Feb 2020 ASA-202002-5 AVG-1096 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-05/#CVE-2020-6796
https://bugzilla.mozilla.org/show_bug.cgi?id=1610426