[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] Chrome heap buffer overflow in freetype2 CVE-2020-15999

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] Chrome heap buffer overflow in freetype2 CVE-2020-15999
From: Marcin Kozlowski <marcinguy@xxxxxxxxx>
Date: Thu, 29 Oct 2020 09:49:02 +0100

Hi list,

Debugged this issue, but somehow cannot trigger the crash in Chrome.

Seems like the font is loaded without correct flags or it was different
font I saw in debugger :)

Anybody had sucess witht this bug? Feel free to reply here or DM.

My notes:

https://github.com/marcinguy/CVE-2020-15999

Thanks,

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] German armed forces launch security vulnerability disclosure program
Previous by thread: [FD] German armed forces launch security vulnerability disclosure program
Index(es):
- Date
- Thread