PT-2020-5575 · Google+7 · V8 Javascript Engine+8

André Bargull

·

Published

2020-11-23

·

Updated

2024-12-12

·

CVE-2020-16042

CVSS v2.0

7.1

High

VectorAV:N/AC:M/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 87.0.4280.88
Description The issue is related to an uninitialized use in the V8 JavaScript engine of Google Chrome, which can allow a remote attacker to obtain potentially sensitive information from process memory. This can be achieved via a crafted HTML page.
Recommendations For versions prior to 87.0.4280.88, update to version 87.0.4280.88 or later to resolve the issue.

Exploit

Fix

Information Disclosure

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-908

Related Identifiers

ALT-PU-2020-3513
ALT-PU-2020-3515
ALT-PU-2020-3529
ALT-PU-2020-3550
ALT-PU-2021-1049
ALT-PU-2021-1151
ALT-PU-2021-1157
ALT-PU-2021-1200
ALT-PU-2021-1210
ALT-PU-2021-1368
ALT-PU-2021-1369
ALT-PU-2021-1379
ALT-PU-2021-3368
BDU:2021-01188
CESA-2020_5562
CESA-2020_5618
CESA-2020_5624
CVE-2020-16042
DLA-2496-1
DLA-2497-1
DSA-4813-1
DSA-4815-1
DSA-4824-1
MGASA-2020-0461
MGASA-2020-0462
OPENSUSE-SU-2020:2181-1
OPENSUSE-SU-2020:2213-1
OPENSUSE-SU-2020:2216-1
OPENSUSE-SU-2020:2229-1
OPENSUSE-SU-2020:2317-1
OPENSUSE-SU-2020:2318-1
OPENSUSE-SU-2020:2324-1
OPENSUSE-SU-2020:2325-1
OPENSUSE-SU-2020:2359-1
OPENSUSE-SU-2020:2360-1
OPENSUSE-SU-2020_2181-1
OPENSUSE-SU-2020_2216-1
OPENSUSE-SU-2020_2317-1
OPENSUSE-SU-2020_2318-1
OPENSUSE-SU-2020_2324-1
OPENSUSE-SU-2020_2325-1
OPENSUSE-SU-2020_2359-1
OPENSUSE-SU-2020_2360-1
OPENSUSE-SU-2024:10600-1
OPENSUSE-SU-2024:10601-1
OPENSUSE-SU-2024:10681-1
OPENSUSE-SU-2024:12948-1
OPENSUSE-SU-2024:14572-1
RHSA-2020:5561
RHSA-2020:5562
RHSA-2020:5563
RHSA-2020:5564
RHSA-2020:5565
RHSA-2020:5618
RHSA-2020:5622
RHSA-2020:5624
RHSA-2020:5644
RHSA-2020:5645
RHSA-2020_5561
RHSA-2020_5562
RHSA-2020_5618
RHSA-2020_5624
SUSE-SU-2020:14584-1
SUSE-SU-2020:3900-1
SUSE-SU-2020:3901-1
SUSE-SU-2020:3902-1
SUSE-SU-2020:3903-1
SUSE-SU-2020:3935-1
SUSE-SU-2020_14584-1
SUSE-SU-2020_3901-1
SUSE-SU-2020_3902-1
SUSE-SU-2020_3903-1
USN-4671-1
USN-4701-1

Affected Products

Alt Linux
Astra Linux
Centos
Google Chrome
Linuxmint
Red Hat
Suse
Ubuntu
V8 Javascript Engine