CVE-2020-6514
Published: 22 July 2020
Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.
Priority
Medium
CVSS 3 base score: 6.5
Status
| Package | Release | Status |
|---|---|---|
|
chromium-browser Launchpad, Ubuntu, Debian |
Upstream |
Released
|
| Ubuntu 21.10 (Impish Indri) |
Not vulnerable
(code not present)
|
|
| Ubuntu 21.04 (Hirsute Hippo) |
Not vulnerable
(code not present)
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Not vulnerable
(code not present)
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Released
(84.0.4147.105-0ubuntu0.18.04.1)
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Released
(84.0.4147.105-0ubuntu0.16.04.1)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
firefox Launchpad, Ubuntu, Debian |
Upstream |
Released
(79)
|
| Ubuntu 21.10 (Impish Indri) |
Released
(80.0.1+build1-0ubuntu1)
|
|
| Ubuntu 21.04 (Hirsute Hippo) |
Released
(80.0.1+build1-0ubuntu1)
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Released
(79.0+build1-0ubuntu0.20.04.1)
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Released
(79.0+build1-0ubuntu0.18.04.1)
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Released
(79.0+build1-0ubuntu0.16.04.2)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
thunderbird Launchpad, Ubuntu, Debian |
Upstream |
Released
(68.11)
|
| Ubuntu 21.10 (Impish Indri) |
Not vulnerable
(1:78.4.3+build1-0ubuntu1)
|
|
| Ubuntu 21.04 (Hirsute Hippo) |
Not vulnerable
(1:78.4.3+build1-0ubuntu1)
|
|
| Ubuntu 20.04 LTS (Focal Fossa) |
Released
(1:78.7.1+build1-0ubuntu0.20.04.1)
|
|
| Ubuntu 18.04 LTS (Bionic Beaver) |
Released
(1:78.8.1+build1-0ubuntu0.18.04.1)
|
|
| Ubuntu 16.04 ESM (Xenial Xerus) |
Needed
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|