CVE-2020-6555
7.6HIGHOut of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
Published: 9/21/2020Updated: 11/21/2024
Description
Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
AI AnalysisPowered by AI
Affected Products
googlechrome
debiandebian_linux
10.0
fedoraprojectfedora
33
References
- https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop.htmlRelease NotesVendor Advisory
- https://crbug.com/1105202Third Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EE7XWIZBME7JAY7N6CGPET4CLNHHEIVT/
- https://security.gentoo.org/glsa/202101-30Third Party Advisory
- https://www.debian.org/security/2021/dsa-4824Third Party Advisory
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1123ExploitTechnical DescriptionThird Party Advisory
- https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop.htmlRelease NotesVendor Advisory
- https://crbug.com/1105202Third Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EE7XWIZBME7JAY7N6CGPET4CLNHHEIVT/
- https://security.gentoo.org/glsa/202101-30Third Party Advisory
- https://www.debian.org/security/2021/dsa-4824Third Party Advisory
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1123ExploitTechnical DescriptionThird Party Advisory