vulnerability

Red Hat: CVE-2020-6821: CVE-2020-6821 Mozilla: Uninitialized memory could be read when using the WebGL copyTexSubImage method (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Apr 8, 2020	Apr 9, 2020	Dec 15, 2023

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Apr 8, 2020

Added

Apr 9, 2020

Modified

Dec 15, 2023

Description

When reading from areas partially or fully outside the source resource with WebGL's copyTexSubImage method, the specification requires the returned values be zero. Previously, this memory was uninitialized, leading to potentially sensitive data disclosure. This vulnerability affects Thunderbird

Solution(s)

redhat-upgrade-firefoxredhat-upgrade-firefox-debuginforedhat-upgrade-firefox-debugsourceredhat-upgrade-thunderbirdredhat-upgrade-thunderbird-debuginforedhat-upgrade-thunderbird-debugsource

References

NVD-CVE-2020-6821
REDHAT-RHSA-2020:1406
REDHAT-RHSA-2020:1420
REDHAT-RHSA-2020:1489
REDHAT-RHSA-2020:1495

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today