Google Chrome prima 86.0.4240.111 Freetype buffer overflow

voceeditHistoryDiffjsonxmlCTI

In Google Chrome (Web Browser) stata rilevata una vulnerabilità di livello critico. Riguarda una funzione sconosciuta del componente Freetype. L'aggiornamento alla versione 86.0.4240.111 elimina questa vulnerabilità. Una possibile soluzione è stata pubblicata immediatamente dopo la pubblicazione della vulnerabilità.

Timeline

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1066170327/11/2020VulD...cvss3_nvd_basescore6.5nist.gov27/11/2020accepted90
1066170227/11/2020VulD...cvss2_nvd_basescore4.3nist.gov27/11/2020accepted90
1066170127/11/2020VulD...cvss3_meta_tempscore6.6see documentation27/11/2020accepted90
1066170027/11/2020VulD...cvss3_meta_basescore6.9see documentation27/11/2020accepted90
1066169927/11/2020VulD...cvss2_nvd_aiPnvd.nist.gov27/11/2020accepted70
1066169827/11/2020VulD...cvss2_nvd_iiNnvd.nist.gov27/11/2020accepted70
1066169727/11/2020VulD...cvss2_nvd_ciNnvd.nist.gov27/11/2020accepted70
1066169627/11/2020VulD...cvss2_nvd_auNnvd.nist.gov27/11/2020accepted70
1066169527/11/2020VulD...cvss2_nvd_acMnvd.nist.gov27/11/2020accepted70
1066169427/11/2020VulD...cvss2_nvd_avNnvd.nist.gov27/11/2020accepted70
1066169327/11/2020VulD...cvss3_nvd_aHnvd.nist.gov27/11/2020accepted70
1066169227/11/2020VulD...cvss3_nvd_iNnvd.nist.gov27/11/2020accepted70
1066169127/11/2020VulD...cvss3_nvd_cNnvd.nist.gov27/11/2020accepted70
1066169027/11/2020VulD...cvss3_nvd_sUnvd.nist.gov27/11/2020accepted70
1066168927/11/2020VulD...cvss3_nvd_uiRnvd.nist.gov27/11/2020accepted70
1066168827/11/2020VulD...cvss3_nvd_prNnvd.nist.gov27/11/2020accepted70
1066168727/11/2020VulD...cvss3_nvd_acLnvd.nist.gov27/11/2020accepted70
1066168627/11/2020VulD...cvss3_nvd_avNnvd.nist.gov27/11/2020accepted70
1066168527/11/2020VulD...cve_nvd_summaryHeap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.cve.mitre.org27/11/2020accepted70
1066168427/11/2020VulD...cve_assigned1595800800cve.mitre.org27/11/2020accepted70

Want to stay up to date on a daily basis?

Enable the mail alert feature now!