Fri. May 29th, 2020

CVE-2020-6462: Google Chrome Use-After-Free Vulnerability Alert

1 min read

Google Chrome has pushed version 81.0.4044.129 to the stable channel today. At present, most users have upgraded, so Google announced the details of some vulnerabilities.

Two vulnerabilities are the Use-After-Free (UAF) vulnerability (CVE-2020-6462) reported by Qihoo 360, which involves high memory damage. Use-After-Free is referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

The vulnerability is in the task scheduling and storage of Google Chrome. According to Google’s report, the vulnerability affects Chrome for Windows, Linux, Mac. It is recommended that users using Google Chrome keep the browser automatically updated and do not disable the automatic update service. For specific version information, click the Help =>About Google Chrome page to view information.