Arch LinuxASA-201503-5chromium: multiple issues
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.044 Low
EPSS
Percentile
91.4%
- CVE-2015-1212:
Out-of-bounds write in media.
- CVE-2015-1213, CVE-2015-1214, CVE-2015-1215:
Out-of-bounds write in skia filters.
- CVE-2015-1216:
Use-after-free in v8 bindings.
- CVE-2015-1217:
Type confusion in v8 bindings.
- CVE-2015-1218:
Use-after-free in dom.
- CVE-2015-1219:
Integer overflow in webgl.
- CVE-2015-1220:
Use-after-free in gif decoder.
- CVE-2015-1221:
Use-after-free in web databases.
- CVE-2015-1222:
Use-after-free in service workers.
- CVE-2015-1223:
Use-after-free in dom.
- CVE-2015-1224:
Out-of-bounds read in vpxdecoder.
- CVE-2015-1225:
Out-of-bounds read in pdfium.
- CVE-2015-1226:
Validation issue in debugger.
- CVE-2015-1227:
Uninitialized value in blink.
- CVE-2015-1228:
Uninitialized value in rendering.
- CVE-2015-1229:
Cookie injection via proxies.
- CVE-2015-1230:
Type confusion in v8.
- CVE-2015-1231:
Various fixes from internal audits, fuzzing and other initiatives.
References
googlechromereleases.blogspot.fr/2015/03/stable-channel-update.html
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1212
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1213
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1214
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1215
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1216
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1217
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1218
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1219
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1220
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1221
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1222
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1223
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1224
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1225
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1226
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1227
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1228
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1229
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1230
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1231
Related
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.044 Low
EPSS
Percentile
91.4%