CVE-2020-6463

Опубликовано: 21 мая 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 8.8

Описание

Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Релиз	Статус	Примечание
bionic	released	81.0.4044.122-0ubuntu0.18.04.1
devel	not-affected	code not present
eoan	not-affected	code not present
esm-apps/noble	not-affected	code not present
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE	focal was not-affected [code not present]
focal	not-affected	code not present
groovy	not-affected	code not present
hirsute	not-affected	code not present
impish	not-affected	code not present

Показывать по

Релиз	Статус	Примечание
bionic	released	79.0+build1-0ubuntu0.18.04.1
devel	released	80.0.1+build1-0ubuntu1
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	released	79.0+build1-0ubuntu0.20.04.1
groovy	released	80.0.1+build1-0ubuntu1
hirsute	released	80.0.1+build1-0ubuntu1
impish	released	80.0.1+build1-0ubuntu1
jammy	released	80.0.1+build1-0ubuntu1
kinetic	released	80.0.1+build1-0ubuntu1

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	ignored
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
hirsute	DNE
impish	DNE
jammy	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/focal	ignored
esm-infra-legacy/trusty	DNE
esm-infra/bionic	ignored
focal	ignored
groovy	ignored	end of life
hirsute	DNE
impish	DNE
jammy	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	ignored
focal	ignored
groovy	ignored	end of life
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	released	1:78.8.1+build1-0ubuntu0.18.04.1
devel	not-affected	1:78.4.3+build1-0ubuntu1
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	released	1:78.7.1+build1-0ubuntu0.20.04.1
groovy	not-affected	1:78.3.2+build1-0ubuntu1
hirsute	not-affected	1:78.4.3+build1-0ubuntu1
impish	not-affected	1:78.4.3+build1-0ubuntu1
jammy	not-affected	1:78.4.3+build1-0ubuntu1
kinetic	not-affected	1:78.4.3+build1-0ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 88%

0.03747

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2020-6463

CVSS3: 8.8

redhat

почти 6 лет назад

Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVE-2020-6463

CVSS3: 8.8

nvd

больше 5 лет назад

Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVE-2020-6463

CVSS3: 8.8

debian

больше 5 лет назад

Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowe ...

GHSA-vmqg-547g-3f2r

CVSS3: 8.8

github

больше 3 лет назад

Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

openSUSE-SU-2020:1205-1

suse-cvrf

больше 5 лет назад

Security update for MozillaThunderbird

EPSS

Процентиль: 88%

0.03747

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2020-6463

Описание

Пакет chromium-browser

Пакет firefox

Пакет mozjs38

Пакет mozjs52

Пакет mozjs60

Пакет mozjs68

Пакет thunderbird

Ссылки на источники

Связанные уязвимости