Google has fixed an error in WebGL (Web Graphics Library) of the Google Chrome browser, which could result in arbitrary code execution.
The WebGL is a JavaScript API used by compatible browsers for better rendering of 2D and 3D graphics without the use of addons.
The fix for this vulnerability is already included in the beta version of the Google application and we will soon see it in the fixed version 85.0.4149.0 that will be released today according to Google.
The security loophole was discovered by Cisco Talos researcher Marcin Towalski and has been documented in CVE-2020-6492. It is very high quality and has been rated with 8.3 CVSSv3 Score.
The vulnerability triggers a shutdown when the item WebGL fails to handle objects in memory correctly.
The CVE-2020-6492 vulnerability affects Google Chrome 81.0.4044.138 (Fixed), 84.0.4136.5 (Dev) and 84.0.4143.7 (Canary), and reported to Google on May 19.
Office 365 opens files in the sandbox to prevent threats
Comment Policy:
IGuRu.gr does not post comments directly. Malicious comments, comments that include ads, or comments with insults are deleted without any notice. We do not adopt the views expressed by our readers.
Your comments will be displayed after approval by the administrators