Out-of-bounds Write

🗓️ 27 Oct 2020 00:00:00Reported by https://gitlab.com/gitlab-org/security-products/gemnasium-dbType

gitlab

gitlab🔗 gitlab.com👁 38 Views

Out-of-bounds Write in Freetyp

Reporter	Title	Published	Views	Family All 296
GithubExploit	Exploit for Classic Buffer Overflow in Google Chrome	30 Dec 202019:58	–	githubexploit
FreeBSD	freetype2 -- heap buffer overlfow	20 Oct 202000:00	–	freebsd
FreeBSD	chromium -- multiple vulnerabilities	20 Oct 202000:00	–	freebsd
ALT Linux	Security fix for the ALT Linux 10 package thunderbird version 78.5.0-alt1	19 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package firefox-esr version 78.5.0-alt1	16 Nov 202000:00	–	altlinux
Tenable Nessus	Google Chrome < 86.0.4240.111 Multiple Vulnerabilities	20 Oct 202000:00	–	nessus
Tenable Nessus	Amazon Linux 2022 : freetype, freetype-demos, freetype-devel (ALAS2022-2022-033)	11 Dec 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2022 : freetype, freetype-demos, freetype-devel (ALAS2022-2022-154)	20 Oct 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : freetype, freetype-demos, freetype-devel (ALAS2023-2023-074)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : freetype (ALAS-2020-1565)	9 Dec 202000:00	–	nessus

Source	Link
github	www.github.com/cefsharp/CefSharp/security/advisories/GHSA-pv36-h7jh-qm62
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-15999
googleprojectzero	www.googleprojectzero.blogspot.com/p/rca-cve-2020-15999.html
github	www.github.com/advisories/GHSA-pv36-h7jh-qm62

27 Oct 2020 00:00Current

3.4Low risk

Vulners AI Score3.4

CVSS 24.3

CVSS 3.19.6

EPSS0.5063

heap buffer overflow google chrome remote attacker heap corruption crafted html page software