Log

CVE-2020-6422 edited at 19 Mar 2020 09:47:11
Description
- A use-after-free security issue has been found in the WebGL component of the chromium browser before 80.0.3987.8.
+ A use-after-free security issue has been found in the WebGL component of the chromium browser before 80.0.3987.149.
CVE-2020-6424 edited at 19 Mar 2020 09:47:07
Description
- A use-after-free security issue has been found in the media component of the chromium browser before 80.0.3987.8.
+ A use-after-free security issue has been found in the media component of the chromium browser before 80.0.3987.149.
CVE-2020-6425 edited at 19 Mar 2020 09:47:01
Description
- An insufficient policy enforcement security issue has been found in the extensions component of the chromium browser before 80.0.3987.8.
+ An insufficient policy enforcement security issue has been found in the extensions component of the chromium browser before 80.0.3987.149.
CVE-2020-6426 edited at 19 Mar 2020 09:46:56
Description
- An inappropriate implementation security issue has been found in the V8 component of the chromium browser before 80.0.3987.8.
+ An inappropriate implementation security issue has been found in the V8 component of the chromium browser before 80.0.3987.149.
CVE-2020-6427 edited at 19 Mar 2020 09:46:48
Description
- A use after free security issue has been found in the audio component of the chromium browser before 80.0.3987.8.
+ A use after free security issue has been found in the audio component of the chromium browser before 80.0.3987.149.
CVE-2020-6428 edited at 19 Mar 2020 09:46:42
Description
- A use-after-free security issue has been found in the audio component of the chromium browser before 80.0.3987.8.
+ A use-after-free security issue has been found in the audio component of the chromium browser before 80.0.3987.149.
CVE-2020-6429 edited at 19 Mar 2020 09:46:37
Description
- A use-after-free security issue has been found in the audio component of the chromium browser before 80.0.3987.8.
+ A use-after-free security issue has been found in the audio component of the chromium browser before 80.0.3987.149.
CVE-2020-6449 edited at 19 Mar 2020 09:46:32
Description
- A use-after-free security issue has been found in the audio component of the chromium browser before 80.0.3987.8.
+ A use-after-free security issue has been found in the audio component of the chromium browser before 80.0.3987.149.
CVE-2019-20503 edited at 19 Mar 2020 09:46:18
Description
- An out-of-bounds read has been found in Firefox before 74 and Thunderbird before 68.6. The inputs to sctp_load_addresses_from_init are verified by sctp_arethere_unrecognized_parameters; however, the two functions handled parameter bounds differently, resulting in out of bounds reads when parameters are partially outside a chunk.
+ An out-of-bounds read has been found in Firefox before 74, Thunderbird before 68.6 and chromium before 80.0.3987.149. The inputs to sctp_load_addresses_from_init are verified by sctp_arethere_unrecognized_parameters; however, the two functions handled parameter bounds differently, resulting in out of bounds reads when parameters are partially outside a chunk.
References
https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2019-20503
https://www.mozilla.org/en-US/security/advisories/mfsa2020-10/#CVE-2019-20503
https://bugzilla.mozilla.org/show_bug.cgi?id=1613765
+ https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html
+ https://crbug.com/1059349
CVE-2020-6422 edited at 19 Mar 2020 09:45:27
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Arbitrary code execution
Description
+ A use-after-free security issue has been found in the WebGL component of the chromium browser before 80.0.3987.8.
References
+ https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html
+ https://crbug.com/1051748
Notes