{"id":"ASB-A-150706594", "published":"2020-08-01T00:00:00Z", "modified":"2026-06-05T15:03:38.651710474Z", "aliases":["CVE-2020-0240", "A-150706594"], "details":"In NewFixedDoubleArray of factory.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.", "affected":[{"package":{"name":"platform/external/v8", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"10:0"}, {"fixed":"10:2020-08-01"}]}], "versions":["10"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/v8/+/cb30bc6720cb3864d1a9f9c55b7d53ab2d9a5f7a"], "severity":"High", "spl":"2020-08-01", "types":["RCE"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["257503698769316166642687185679505310528", "75799377391045390319712277837338821917", "200337686004425812197578443623868861234", "4030913443801306677836772240222040839"], "threshold":0.9}, "id":"ASB-A-150706594-b696e83f", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/external/v8/+/cb30bc6720cb3864d1a9f9c55b7d53ab2d9a5f7a", "target":{"file":"src/heap/factory.cc"}}, {"deprecated":false, "digest":{"function_hash":"7192812031616359559326099721272054014", "length":520}, "id":"ASB-A-150706594-d11d3b6d", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/external/v8/+/cb30bc6720cb3864d1a9f9c55b7d53ab2d9a5f7a", "target":{"file":"src/heap/factory.cc", "function":"Factory::NewFixedDoubleArray"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2020-08-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/external/v8/+/cb30bc6720cb3864d1a9f9c55b7d53ab2d9a5f7a"}]}