CVE-2020-6514

Priority
Description
Inappropriate implementation in WebRTC in Google Chrome prior to
84.0.4147.89 allowed an attacker in a privileged network position to
potentially exploit heap corruption via a crafted SCTP stream.
Notes
amurrayThe Debian chromium source package is called chromium-browser in
Ubuntu
mdeslaurstarting with Ubuntu 19.10, the chromium-browser package is just
a script that installs the Chromium snap
Package
Upstream:released
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 20.04 LTS (Focal Fossa):not-affected (code not present)
Ubuntu 20.10 (Groovy Gorilla):not-affected (code not present)
Package
Upstream:released (79)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (79.0+build1-0ubuntu0.16.04.2)
Ubuntu 18.04 LTS (Bionic Beaver):released (79.0+build1-0ubuntu0.18.04.1)
Ubuntu 20.04 LTS (Focal Fossa):released (79.0+build1-0ubuntu0.20.04.1)
Ubuntu 20.10 (Groovy Gorilla):needs-triage
More Information

Updated: 2020-07-30 08:16:47 UTC (commit dd36f14d21577f24d69b52e860f40106ba49ea35)