{"id":"CVE-2020-6514","details":"Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.","modified":"2026-04-16T00:07:37.287906330Z","published":"2020-07-22T17:15:13.447Z","related":["SUSE-SU-2020:14456-1","SUSE-SU-2020:2100-1","SUSE-SU-2020:2118-1","SUSE-SU-2020:2147-1","SUSE-SU-2020:2179-1","openSUSE-SU-2020:1020-1","openSUSE-SU-2020:1021-1","openSUSE-SU-2020:1048-1","openSUSE-SU-2020:1061-1","openSUSE-SU-2020:1147-1","openSUSE-SU-2020:1148-1","openSUSE-SU-2020:1155-1","openSUSE-SU-2020:1172-1","openSUSE-SU-2020:1179-1","openSUSE-SU-2020:1189-1","openSUSE-SU-2020:1205-1","openSUSE-SU-2024:10600-1","openSUSE-SU-2024:10601-1","openSUSE-SU-2024:10681-1","openSUSE-SU-2024:12948-1","openSUSE-SU-2024:14572-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTRPPTKZ2RKVH2XGQCWNFZ7FOGQ5LLCA/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYIDWCHG24ZTFD4P42D4A4WWPPA74BCG/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/08/msg00006.html"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT211292"},{"type":"ADVISORY","url":"https://www.debian.org/security/2021/dsa-4824"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00018.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00025.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202007-64"},{"type":"ADVISORY","url":"https://www.debian.org/security/2020/dsa-4740"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00011.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00022.html"},{"type":"ADVISORY","url":"https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202007-08"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT211288"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT211290"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4443-1/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00007.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00008.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202101-30"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT211291"},{"type":"ADVISORY","url":"https://www.debian.org/security/2020/dsa-4736"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00069.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00032.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00041.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/07/msg00027.html"},{"type":"REPORT","url":"https://crbug.com/1076703"},{"type":"EVIDENCE","url":"http://packetstormsecurity.com/files/158697/WebRTC-usrsctp-Incorrect-Call.html"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-6514.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"84.0.4147.89"}]},{"events":[{"introduced":"0"},{"last_affected":"15.0-sp1"}]},{"events":[{"introduced":"0"},{"last_affected":"15.0-sp2"}]},{"events":[{"introduced":"0"},{"last_affected":"15.1"}]},{"events":[{"introduced":"0"},{"last_affected":"15.2"}]},{"events":[{"introduced":"0"},{"last_affected":"31"}]},{"events":[{"introduced":"0"},{"last_affected":"32"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]},{"events":[{"introduced":"0"},{"last_affected":"20.04"}]},{"events":[{"introduced":"0"},{"fixed":"13.1.2"}]},{"events":[{"introduced":"0"},{"fixed":"13.6"}]},{"events":[{"introduced":"0"},{"fixed":"13.6"}]},{"events":[{"introduced":"0"},{"fixed":"13.4.8"}]},{"events":[{"introduced":"0"},{"fixed":"6.2.8"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}]}