CVE-2020-6459 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2020-6459 Interim 1 22 2025-02-17T01:39:50Z current 2021-05-30T14:36:37Z 2025-02-17T01:39:50Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2020-6459 Use after free in payments in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HJ56OQK4ESIDWMRCE574AVEUBQ7O5ZPB/ E-Mail link for openSUSE-SU-2020:0604-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CISSJFTLJCZM6FLWTJJSQEDTEBDRTV6R/ E-Mail link for openSUSE-SU-2020:0615-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/F6JPGRCMJIBFSTEUKUCXOWZKVCHWU4O7/ E-Mail link for openSUSE-SU-2020:0635-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 15 SP1 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree openSUSE Leap 15.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed chromedriver-81.0.4044.129-bp151.3.79.1 chromedriver-81.0.4044.129-lp151.2.85.1 chromedriver-93.0.4577.82-1.1 chromium-101.0.4951.64-bp154.1.2 chromium-81.0.4044.129-bp151.3.79.1 chromium-81.0.4044.129-lp151.2.85.1 chromium-83.0.4103.97-lp152.1.1 chromium-90.0.4430.212-bp153.1.1 chromium-93.0.4577.82-1.1 opera-68.0.3618.63-lp151.2.15.1 ungoogled-chromium-113.0.5672.92-1.1 ungoogled-chromium-chromedriver-113.0.5672.92-1.1 chromedriver-81.0.4044.129-bp151.3.79.1 as a component of SUSE Package Hub 15 SP1 chromium-81.0.4044.129-bp151.3.79.1 as a component of SUSE Package Hub 15 SP1 chromedriver-81.0.4044.129-lp151.2.85.1 as a component of openSUSE Leap 15.1 chromium-81.0.4044.129-lp151.2.85.1 as a component of openSUSE Leap 15.1 opera-68.0.3618.63-lp151.2.15.1 as a component of openSUSE Leap 15.1 NonFree chromium-83.0.4103.97-lp152.1.1 as a component of openSUSE Leap 15.2 chromium-90.0.4430.212-bp153.1.1 as a component of openSUSE Leap 15.3 chromium-101.0.4951.64-bp154.1.2 as a component of openSUSE Leap 15.4 chromedriver-93.0.4577.82-1.1 as a component of openSUSE Tumbleweed chromium-93.0.4577.82-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-chromedriver-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed Use after free in payments in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6459 SUSE Package Hub 15 SP1:chromedriver-81.0.4044.129-bp151.3.79.1 SUSE Package Hub 15 SP1:chromium-81.0.4044.129-bp151.3.79.1 openSUSE Leap 15.1:chromedriver-81.0.4044.129-lp151.2.85.1 openSUSE Leap 15.1:chromium-81.0.4044.129-lp151.2.85.1 openSUSE Leap 15.1 NonFree:opera-68.0.3618.63-lp151.2.15.1 openSUSE Leap 15.2:chromium-83.0.4103.97-lp152.1.1 openSUSE Leap 15.3:chromium-90.0.4430.212-bp153.1.1 openSUSE Leap 15.4:chromium-101.0.4951.64-bp154.1.2 openSUSE Tumbleweed:chromedriver-93.0.4577.82-1.1 openSUSE Tumbleweed:chromium-93.0.4577.82-1.1 openSUSE Tumbleweed:ungoogled-chromium-113.0.5672.92-1.1 openSUSE Tumbleweed:ungoogled-chromium-chromedriver-113.0.5672.92-1.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H