ALAS2-2020-1487 --- thunderbirdID: oval:org.secpod.oval:def:1700393 | Date: (C)2020-09-15 (M)2024-02-19 |
Class: PATCH | Family: unix |
Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox CVE-2020-15652