Integer overflow in JavaScript in Google Chrome on ChromeOS and Android prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00015.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00025.html | Mailing List Third Party Advisory |
https://access.redhat.com/errata/RHSA-2020:0514 | Third Party Advisory |
https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html | Vendor Advisory |
https://crbug.com/1034394 | Exploit Issue Tracking Patch Vendor Advisory |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/ | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3B5RWJQD5LA45MYLLR55KZJOJ5NVZGP/ | |
https://security.gentoo.org/glsa/202003-08 | Third Party Advisory |
https://www.debian.org/security/2020/dsa-4638 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
|
History
07 Nov 2023, 03:24
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
11 Apr 2022, 19:16
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:* cpe:2.3:o:google:android:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:* cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:* cpe:2.3:o:suse:linux_enterprise:12.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X3B5RWJQD5LA45MYLLR55KZJOJ5NVZGP/ - Mailing List, Third Party Advisory | |
References | (REDHAT) https://access.redhat.com/errata/RHSA-2020:0514 - Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00025.html - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/ - Mailing List, Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2020/dsa-4638 - Third Party Advisory | |
References | (MISC) https://crbug.com/1034394 - Exploit, Issue Tracking, Patch, Vendor Advisory | |
References | (GENTOO) https://security.gentoo.org/glsa/202003-08 - Third Party Advisory | |
First Time |
Debian debian Linux
Redhat enterprise Linux Desktop Suse Redhat enterprise Linux Server Debian Suse package Hub Suse linux Enterprise Google chrome Os Redhat enterprise Linux Workstation Fedoraproject fedora Google android Redhat Fedoraproject |
Information
Published : 2020-02-11 15:15
Updated : 2023-12-10 13:13
NVD link : CVE-2020-6381
Mitre link : CVE-2020-6381
CVE.ORG link : CVE-2020-6381
JSON object : View
Products Affected
- chrome
- android
- chrome_os
redhat
- enterprise_linux_workstation
- enterprise_linux_desktop
- enterprise_linux_server
fedoraproject
- fedora
suse
- package_hub
- linux_enterprise
debian
- debian_linux
opensuse
- backports_sle
CWE
CWE-190
Integer Overflow or Wraparound