Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-6831HistoryMay 26, 2020 - 6:15 p.m.
CVE-2020-6831
2020-05-2618:15:00
Debian Security Bug Tracker
security-tracker.debian.org
21
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.0%
A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox ESR < 68.8, Firefox < 76, and Thunderbird < 68.8.0.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | chromium | < 83.0.4103.83-1 | chromium_83.0.4103.83-1_all.deb |
| Debian | 11 | all | chromium | < 83.0.4103.83-1 | chromium_83.0.4103.83-1_all.deb |
| Debian | 10 | all | chromium | < 83.0.4103.116-1~deb10u1 | chromium_83.0.4103.116-1~deb10u1_all.deb |
| Debian | 999 | all | chromium | < 83.0.4103.83-1 | chromium_83.0.4103.83-1_all.deb |
| Debian | 13 | all | chromium | < 83.0.4103.83-1 | chromium_83.0.4103.83-1_all.deb |
| Debian | 999 | all | firefox | < 76.0-1 | firefox_76.0-1_all.deb |
| Debian | 12 | all | firefox-esr | < 68.8.0esr-1 | firefox-esr_68.8.0esr-1_all.deb |
| Debian | 11 | all | firefox-esr | < 68.8.0esr-1 | firefox-esr_68.8.0esr-1_all.deb |
| Debian | 10 | all | firefox-esr | < 68.8.0esr-1~deb10u1 | firefox-esr_68.8.0esr-1~deb10u1_all.deb |
| Debian | 999 | all | firefox-esr | < 68.8.0esr-1 | firefox-esr_68.8.0esr-1_all.deb |
Related
cve
cve
CVE-2020-6831
2020-05-26 18:15:00
veracode
veracode
Buffer Overflows
2020-05-07 01:53:58
ubuntucve
ubuntucve
CVE-2020-6831
2020-05-06 00:00:00
alpinelinux
alpinelinux
CVE-2020-6831
2020-05-26 18:15:00
prion
prion
Buffer overflow
2020-05-26 18:15:00
redhatcve
redhatcve
CVE-2020-6831
2020-05-05 16:40:36
nessus
nessus
Google Chrome < 81.0.4044.138 Multiple Vulnerabilities
2020-05-06 00:00:00
Google Chrome < 81.0.4044.138 Multiple Vulnerabilities
2020-05-06 00:00:00
RHEL 6 : chromium-browser (RHSA-2020:2064)
2020-05-11 00:00:00
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop-2020-05) - Linux
2020-05-06 00:00:00
Mageia: Security Advisory (MGASA-2020-0210)
2022-01-28 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2020-05-10 11:55:41
Updated firefox packages fix security vulnerabilities
2020-05-08 13:57:54
Updated thunderbird packages fix security vulnerabilities
2020-05-08 13:57:54
suse
suse
Security update for chromium (important)
2020-05-11 00:00:00
Security update for chromium (important)
2020-05-11 00:00:00
Security update for opera (important)
2020-07-02 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-05-05 00:00:00
kaspersky
kaspersky
KLA11781 Multiple vulnerabilities in Opera
2020-05-13 00:00:00
KLA11763 Multiple vulnerabilities in Google Chrome
2020-05-05 00:00:00
KLA11779 Multiple vulnerabilities in Mozilla Thunderbird
2020-05-05 00:00:00
archlinux
archlinux
[ASA-202005-2] chromium: arbitrary code execution
2020-05-06 00:00:00
[ASA-202005-7] thunderbird: multiple issues
2020-05-09 00:00:00
[ASA-202005-3] firefox: multiple issues
2020-05-06 00:00:00
redhat
redhat
(RHSA-2020:2064) Important: chromium-browser security update
2020-05-11 20:54:58
(RHSA-2020:2037) Critical: firefox security update
2020-05-06 09:40:47
(RHSA-2020:2036) Critical: firefox security update
2020-05-06 09:40:39
googleprojectzero
googleprojectzero
Exploiting Android Messengers with WebRTC: Part 2
2020-08-05 00:00:00
oraclelinux
oraclelinux
firefox security update
2020-05-07 00:00:00
firefox security update
2020-05-09 00:00:00
thunderbird security update
2020-05-12 00:00:00
centos
centos
firefox security update
2020-05-21 14:19:56
firefox security update
2020-05-21 14:13:31
thunderbird security update
2020-05-21 14:21:19
osv
osv
firefox-esr - security update
2020-05-08 00:00:00
firefox-esr - security update
2020-05-06 00:00:00
thunderbird - security update
2020-05-08 00:00:00
ibm
ibm
debian
debian
[SECURITY] [DSA 4678-1] firefox-esr security update
2020-05-06 20:54:10
[SECURITY] [DLA 2205-1] firefox-esr security update
2020-05-08 12:35:22
[SECURITY] [DSA 4683-1] thunderbird security update
2020-05-08 19:14:02
ubuntu
ubuntu
Thunderbird vulnerabilities
2020-05-26 00:00:00
Firefox vulnerabilities
2020-05-07 00:00:00
Firefox regression
2020-05-12 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple vulnerabilities
2020-05-12 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2020-05-12 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 68.8.0 — Mozilla
2020-05-05 00:00:00
Security Vulnerabilities fixed in Firefox ESR 68.8 — Mozilla
2020-05-05 00:00:00
Security Vulnerabilities fixed in Firefox 76 — Mozilla
2020-05-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 68.8.0-alt1
2020-05-05 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 68.8.0-alt1
2020-05-05 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2020-05-05 20:43:19
amazon
amazon
Critical: thunderbird
2020-05-19 18:32:00
mscve
mscve
Chromium Security Updates for Microsoft Edge (Chromium-Based)
2020-01-28 08:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.0%
Related for DEBIANCVE:CVE-2020-6831