CVE-2020-15965

Description

Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.

CVSS Metrics

• v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• v2.0•MEDIUM•Score: 6.8AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 13.58%• Percentile: 94%

Techniques & Countermeasures

• CWE-843•Access of Resource Using Incompatible Type ('Type Confusion')

  The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

Affected Systems

• debian•debian_linux

  10.0

• fedoraproject•fedora

  31 | 32 | 33

• google•chrome

  < 85.0.4183.121 | ≥ unspecified, < 85.0.4183.121

• opensuse•backports_sle

  15.0:sp1 | 15.0:sp2

• opensuse•leap

  15.1 | 15.2

References (12)

• https://chromereleases.googleblog.com/2020/09/stable-channel-update-for-desktop_21.html
• https://crbug.com/1126249
• http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00087.html
• http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00095.html
• http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00096.html
• https://security.gentoo.org/glsa/202009-13
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GNIYFJST4TFJYFZ27VODBOINCLBGULTD/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/
• http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00049.html
• https://www.debian.org/security/2021/dsa-4824
• https://security.gentoo.org/glsa/202101-30