Description
Use after free in task scheduling in Google Chrome prior to 81.0.4044.129 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Remediation
References
https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_27.html
https://crbug.com/1064891
https://security.gentoo.org/glsa/202005-13
https://www.debian.org/security/2020/dsa-4714
Related Vulnerabilities
CVE-2020-11973 Vulnerability in maven package org.apache.camel:camel-netty
CVE-2020-4070 Vulnerability in maven package org.w3c.css:css-validator
CVE-2023-36478 Vulnerability in maven package org.eclipse.jetty.http3:http3-qpack
CVE-2022-34114 Vulnerability in maven package io.dataease:dataease-plugin-common
CVE-2021-29425 Vulnerability in maven package commons-io:commons-io