CVE-2020-6387: 
Google Chrome vulnerability analysis and mitigation

CVE-2020-6387 is a high-severity vulnerability discovered in Google Chrome's WebRTC implementation prior to version 80.0.3987.87. The vulnerability was reported by Natalie Silvanovich of Google Project Zero on January 16, 2020 (Chrome Release).

The vulnerability is classified as an out-of-bounds write issue in the WebRTC component of Google Chrome. It has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability could be exploited through a crafted video stream, potentially leading to heap corruption (NVD).

A successful exploitation of this vulnerability could allow a remote attacker to potentially exploit heap corruption via a crafted video stream. Given the high CVSS score and the nature of the vulnerability, this could lead to arbitrary code execution, information disclosure, or system crashes (Red Hat).

The vulnerability was fixed in Chrome version 80.0.3987.87. Users and administrators are strongly advised to upgrade to this version or later. Multiple Linux distributions have also released security updates to address this vulnerability, including Debian (DSA-4638-1), Red Hat (RHSA-2020:0514), and openSUSE (openSUSE-SU-2020:0210) (Debian, Red Hat).