Vulnerability: CVE-2020-6377

Use after free in audio in Google Chrome prior to 79.0.3945.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.


https://seclists.org/bugtraq/2020/Jan/27
https://www.debian.org/security/2020/dsa-4606
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N5CIQCVS6E3ULJCNU7YJXJPO2BLQZDTK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PSUXNEUS6N42UJNQVCQSTSM6CSW2REPG/
https://security.gentoo.org/glsa/202003-08
https://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop.html
https://crbug.com/1029462
https://access.redhat.com/errata/RHSA-2020:0084
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00023.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6377


It's possible to leave a comment as registered users to the site, accessing through social, wordpress account or as anonymous users. If you want to leave a comment as an anonymous user you will be notified by email of a possible response only if you enter the email address (optional). The insertion of any data in the comment fields is totally optional. Whoever decides to insert any data accepts the treatment of these last ones for the inherent purposes of the service that is the answer to the comment and the strictly necessary communications.


Leave a Reply