CVE-2020-6517 – CVE-2020-6517 is a heap buffer overflow vulnera... (How to Fix)

Q: What is the severity of CVE-2020-6517?

CVE-2020-6517 has a CVSS score of 8.8 (HIGH). CVE-2020-6517 is a heap buffer overflow vulnerability in Google Chrome's history component that allows remote attackers to potentially execute arbitrary code or cause denial of service via a crafted HTML page. This affects all users running vulnerable versions of Chrome who visit malicious websites.

📋 TL;DR

CVE-2020-6517 is a heap buffer overflow vulnerability in Google Chrome's history component that allows remote attackers to potentially execute arbitrary code or cause denial of service via a crafted HTML page. This affects all users running vulnerable versions of Chrome who visit malicious websites.

💻 Affected Systems

Products:

Google Chrome
Chromium-based browsers

Versions: All versions prior to 84.0.4147.89

Operating Systems: Windows, macOS, Linux, Chrome OS, Android

Default Config Vulnerable: ⚠️ Yes

Notes: All standard Chrome installations are vulnerable. Extensions or security settings don't mitigate this vulnerability.

📦 What is this software?

Backports Sle by Opensuse

View all CVEs affecting Backports Sle →

Backports Sle by Opensuse

View all CVEs affecting Backports Sle →

Chrome by Google

Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...

Learn more about Chrome →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to full system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Browser crash (denial of service) or limited memory corruption leading to instability.

🟢

If Mitigated

No impact if Chrome is updated to patched version or if exploit attempts are blocked by security controls.

🌐 Internet-Facing: HIGH - Attackers can exploit via malicious websites accessible from the internet.

🏢 Internal Only: MEDIUM - Risk exists if internal users access malicious content, but attack surface is more limited.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires user interaction (visiting malicious website) but no authentication. Heap corruption vulnerabilities can be challenging to weaponize reliably.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 84.0.4147.89 and later

Vendor Advisory: https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop.html

Restart Required: Yes

Instructions:

1. Open Chrome. 2. Click menu (three dots) > Help > About Google Chrome. 3. Chrome will automatically check for and install updates. 4. Click 'Relaunch' to restart Chrome with the updated version.

🔧 Temporary Workarounds

Disable JavaScript

all

Prevents execution of malicious JavaScript that could trigger the vulnerability

chrome://settings/content/javascript > Block

Use Site Isolation

all

Enables Chrome's Site Isolation feature to limit impact of renderer process compromises

chrome://flags/#enable-site-per-process > Enable

🧯 If You Can't Patch

Restrict web browsing to trusted sites only using browser policies or proxy filtering
Deploy application control to block Chrome execution or force use of alternative browsers

🔍 How to Verify

Check if Vulnerable:

Check Chrome version: if below 84.0.4147.89, system is vulnerable.

Check Version:

chrome://version/ (on Chrome) or google-chrome --version (command line)

Verify Fix Applied:

Confirm Chrome version is 84.0.4147.89 or higher after update.

📡 Detection & Monitoring

Log Indicators:

Chrome crash reports
Browser process termination events
Unexpected Chrome restarts

Network Indicators:

Requests to known malicious domains hosting exploit code
Unusual outbound connections after visiting suspicious sites

SIEM Query:

source="chrome" AND (event_type="crash" OR message="*heap*" OR message="*buffer*overflow*")

📊 Metadata

CVE ID: CVE-2020-6517

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-787

Published: July 22, 2020

Last Updated: November 21, 2024

🔗 References

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00069.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00007.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00018.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00041.html Mailing List,Third Party Advisory
https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop.html Release Notes,Vendor Advisory
https://crbug.com/1095560 Permissions Required,Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTRPPTKZ2RKVH2XGQCWNFZ7FOGQ5LLCA/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYIDWCHG24ZTFD4P42D4A4WWPPA74BCG/
https://security.gentoo.org/glsa/202007-08 Third Party Advisory
https://www.debian.org/security/2021/dsa-4824 Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00069.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00007.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00018.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00041.html Mailing List,Third Party Advisory
https://chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop.html Release Notes,Vendor Advisory
https://crbug.com/1095560 Permissions Required,Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTRPPTKZ2RKVH2XGQCWNFZ7FOGQ5LLCA/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYIDWCHG24ZTFD4P42D4A4WWPPA74BCG/
https://security.gentoo.org/glsa/202007-08 Third Party Advisory
https://www.debian.org/security/2021/dsa-4824 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-6517, you might also want to check these:

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Backports Sle by Opensuse

Backports Sle by Opensuse

Chrome by Google

Debian Linux by Debian

Fedora by Fedoraproject

Fedora by Fedoraproject

Leap by Opensuse

Leap by Opensuse

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Disable JavaScript

Use Site Isolation

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities