CVE-2024-1671

2024-02-2104:15:08

Alpine Linux Development Team

security.alpinelinux.org

inappropriate implementation

site isolation

google chrome

remote attacker

content security policy

crafted html page

chromium

medium severity

unix

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

Inappropriate implementation in Site Isolation in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Medium)

OSVersionArchitecturePackageVersionFilename
Alpineedge-communitynoarchqt6-qtwebengine< 6.6.2-r1UNKNOWN
Alpine3.19-communitynoarchqt6-qtwebengine< 6.6.1-r8UNKNOWN
Alpine3.20-communitynoarchqt6-qtwebengine< 6.6.2-r1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	edge-community	noarch	qt6-qtwebengine	< 6.6.2-r1	UNKNOWN
Alpine	3.19-community	noarch	qt6-qtwebengine	< 6.6.1-r8	UNKNOWN
Alpine	3.20-community	noarch	qt6-qtwebengine	< 6.6.2-r1	UNKNOWN