Google Chrome has reported today then is part of multi vulnerability.
A vulnerability was found in Google Chrome (Web Browser) and classified as critical. Affected by this issue is an unknown functionality of the component Offscreen Canvas Handler. The manipulation as part of a HTML Page leads to a memory corruption vulnerability (Use-After-Free).
Using CWE to declare the problem leads to CWE-416 . Impacted is confidentiality, integrity, and availability.
Multiple Vulnerability list is below for Google Chrome:
Google Chrome Offscreen Canvas Use-After-Free memory corruption CVE-2020-6576
Google Chrome Omnibox Domain spoofing CVE-2020-6571
Google Chrome WebRTC information disclosure CVE-2020-6570
Google Chrome WebUSB Integer Overflow memory corruption CVE-2020-6569
Google Chrome Policy Enforcement privilege escalation CVE-2020-6568
Google Chrome Command Line privilege escalation CVE-2020-6567
Google Chrome Media Cross-Origin information disclosure CVE-2020-6566
Google Chrome Omnibox spoofing CVE-2020-6565
Google Chrome Permission Dialog spoofing CVE-2020-6564
Google Chrome Intent information disclosure CVE-2020-6563
Google Chrome Blink Cross-Origin information disclosure CVE-2020-6562
Google Chrome Content Security Policy Cross-Origin information disclosure CVE-2020-6561
Google Chrome Autofill Cross-Origin information disclosure CVE-2020-6560
Google Chrome Presentation API Use-After-Free memory corruption CVE-2020-
6559
Google Chrome iOSWeb privilege escalation CVE-2020-6558
Google Chrome Swiftshader Heap-based memory corruption CVE-2020-6556
Google Chrome WebUSB Use-After-Free memory corruption CVE-2020-6541
Google Chrome Skia Heap-based memory corruption CVE-2020-6540
Google Chrome CSS Use-After-Free memory corruption CVE-2020-6539
Google Chrome WebView Cross-Origin information disclosure CVE-2020-6538
Google Chrome v8 Type Confusion memory corruption CVE-2020-6537
Google Chrome SCTP Use-After-Free memory corruption CVE-2020-6532
Google Chrome Policy Enforcement information disclosure CVE-2020-15966
Google Chrome v8 Out-of-Bounds memory corruption CVE-2020-15965
Google Chrome Media Heap-based memory corruption CVE-2020-15964
Google Chrome Policy Enforcement Sandbox privilege escalation CVE-2020-15963
Google Chrome Serial Policy Validator Out-of-Bounds memory corruption CVE-2020-15962
Google Chrome Extension Policy Validator Sandbox privilege escalation CVE-2020-15961
Google Chrome Storage Out-of-Bounds memory corruption CVE-2020-15960.
The weakness was presented 09/21/2020. The advisory is shared for download at chromereleases.googleblog.com https://chromereleases.googleblog.com/2020/09/stable-channel-update-for-desktop.html .
This vulnerability is handled as CVE-2020-6576 since 01/08/2020. The attack may be launched remotely. No form of authentication is required for exploitation. There are neither technical details nor an exploit publicly available.
Upgrading to version 85.0.4183.102 eliminates this vulnerability.