734982 – (CVE-2020-6514) [Tracker] WebRTC heap corruption (CVE-2020-6514)

Bug 734982 (CVE-2020-6514) - [Tracker] WebRTC heap corruption (CVE-2020-6514)

Summary: [Tracker] WebRTC heap corruption (CVE-2020-6514)

Status:	RESOLVED FIXED

Alias:	CVE-2020-6514

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:	CVE-2020-6510, CVE-2020-6511, CVE-2020-6512, CVE-2020-6513, CVE-2020-6515, CVE-2020-6516, CVE-2020-6517, CVE-2020-6518, CVE-2020-6519, CVE-2020-6520, CVE-2020-6521, CVE-2020-6522, CVE-2020-6523, CVE-2020-6524, CVE-2020-6525, CVE-2020-6526, CVE-2020-6527, CVE-2020-6528, CVE-2020-6529, CVE-2020-6530, CVE-2020-6531, CVE-2020-6533, CVE-2020-6534, CVE-2020-6535, CVE-2020-6536 CVE-2020-15659, MFSA-2020-30, MFSA-2020-31 MFSA-2020-35
Blocks:
	Show dependency tree

Reported:	2020-07-31 17:25 UTC by Sam James
Modified:	2020-07-31 19:06 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sam James archtester

2020-07-31 17:25:29 UTC

Description:
"Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream."

Same CVE used for Firefox, Thunderbird.