CVE-2020-6510: 
Google Chrome vulnerability analysis and mitigation

CVE-2020-6510 is a heap buffer overflow vulnerability discovered in Google Chrome's background fetch functionality affecting versions prior to 84.0.4147.89. The vulnerability was discovered by Leecraso and Guang Gong of 360 Alpha Lab working with 360 BugCloud and was disclosed on July 8, 2020 (Chrome Release).

The vulnerability is classified as a heap buffer overflow in the background fetch functionality of Google Chrome. It has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability is identified as CWE-787 (Out-of-bounds Write) (NVD).

If exploited, this vulnerability could allow a remote attacker to potentially exploit heap corruption via a crafted HTML page, potentially leading to arbitrary code execution within the context of the browser (NVD).

The vulnerability was patched in Google Chrome version 84.0.4147.89. Users and administrators are advised to upgrade to this version or later. Multiple Linux distributions have also released security updates to address this vulnerability, including Debian, Fedora, and Gentoo (Debian Advisory, Gentoo Advisory).