Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201507-18
HistoryJul 23, 2015 - 12:00 a.m.

chromium: multiple issues

2015-07-2300:00:00
Arch Linux
lists.archlinux.org
30

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.038 Low

EPSS

Percentile

90.9%

JSON
  • CVE-2015-1270:

Uninitialized memory read in ICU.

  • CVE-2015-1271:

Heap overflow in pdfium.

  • CVE-2015-1272, CVE-2015-1273, CVE-2015-1279:

Use-after-free related to unexpected GPU process termination.

  • CVE-2015-1274:

Settings allowed executable files to run immediately after download.

  • CVE-2015-1276 :

Use-after-free in IndexedDB.

  • CVE-2015-1277:

Use-after-free in accessibility.

  • CVE-2015-1278:

URL spoofing using pdf files.

  • CVE-2015-1280:

Memory corruption in skia.

  • CVE-2015-1281:

CSP bypass.

  • CVE-2015-1282:

Use-after-free in pdfium.

  • CVE-2015-1283:

Heap-buffer-overflow in expat.

  • CVE-2015-1284:

Use-after-free in blink.

  • CVE-2015-1285:

Information leak in XSS auditor.

  • CVE-2015-1286:

UXSS in blink.

  • CVE-2015-1287:

SOP bypass with CSS.

  • CVE-2015-1288:

Spell checking dictionaries fetched over HTTP.

  • CVE-2015-1289:

Various fixes from internal audits, fuzzing and other initiatives.

OSVersionArchitecturePackageVersionFilename
anyanyanychromium<Β 44.0.2403.89-1UNKNOWN

References

Related

threatpost 1
openvas 19
kaspersky 1
nessus 29
chrome 1
mageia 4
redhat 1
freebsd 2
suse 5
securityvulns 6
debian 7
osv 5
ubuntu 4
veracode 2
cve 20
prion 20
debiancve 19
ubuntucve 20
packetstorm 1
ibm 22
freebsd_advisory 1
gentoo 1
f5 3
archlinux 3
amazon 1
cloudfoundry 1
threatpost
threatpost
Google Patches 43 Bugs in Chrome
2015-07-22 09:23:06
openvas
openvas
Google Chrome Multiple Vulnerabilities-01 July15 (Linux)
2015-07-23 00:00:00
Google Chrome Multiple Vulnerabilities-01 July15 (Mac OS X)
2015-07-23 00:00:00
Google Chrome Multiple Vulnerabilities-01 July15 (Windows)
2015-07-23 00:00:00
kaspersky
kaspersky
KLA10636 Multiple vulnerabilities in Google Chrome
2015-07-21 00:00:00
nessus
nessus
Google Chrome < 44.0.2403.89 Multiple Vulnerabilities
2015-07-22 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (9d732078-32c7-11e5-b263-00262d5ed8ee)
2015-07-27 00:00:00
openSUSE Security Update : Chromium (openSUSE-2015-513)
2015-07-27 00:00:00
chrome
chrome
Stable Channel Update
2015-07-21 00:00:00
mageia
mageia
Updated chromium-browser package fixes security vulnerabilities
2015-07-27 20:45:18
Updated icu package fixes security vulnerability
2015-07-27 20:34:09
Updated expat package fixes security vulnerability
2015-07-27 20:18:02
redhat
redhat
(RHSA-2015:1499) Important: chromium-browser security update
2015-07-27 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-07-21 00:00:00
FreeBSD -- Multiple integer overflows in expat (libbsdxml) XML parser
2015-08-18 00:00:00
suse
suse
Security update for Chromium (important)
2015-07-26 21:08:24
Security update for expat (important)
2016-06-08 12:07:50
Security update for expat (important)
2016-06-07 13:08:02
securityvulns
securityvulns
Google Chrome / Chromium multiple security vulnerabilities
2015-07-26 00:00:00
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-26 00:00:00
[SECURITY] [DSA 3360-1] icu security update
2015-10-05 00:00:00
debian
debian
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
[SECURITY] [DSA 3360-1] icu security update
2015-09-15 16:09:40
osv
osv
chromium-browser - security update
2015-07-23 00:00:00
expat - security update
2015-07-26 00:00:00
expat - security update
2016-05-18 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-08-04 00:00:00
Expat vulnerability
2015-08-31 00:00:00
VNC4 vulnerabilities
2021-03-15 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:22:41
Denial Of Service (DoS)
2017-02-01 05:26:42
cve
cve
CVE-2015-1273
2015-07-23 00:59:00
CVE-2015-1277
2015-07-23 00:59:00
CVE-2015-1276
2015-07-23 00:59:00
prion
prion
Design/Logic Flaw
2015-07-23 00:59:00
Design/Logic Flaw
2015-07-23 00:59:00
Authentication flaw
2015-07-23 00:59:00
debiancve
debiancve
CVE-2015-1277
2015-07-23 00:59:00
CVE-2015-1276
2015-07-23 00:59:00
CVE-2015-1279
2015-07-23 00:59:00
ubuntucve
ubuntucve
CVE-2015-1277
2015-07-22 00:00:00
CVE-2015-1287
2015-07-22 00:00:00
CVE-2015-1272
2015-07-22 00:00:00
packetstorm
packetstorm
Chrome ui::AXTree::Unserialize Use-After-Free
2015-07-18 00:00:00
ibm
ibm
Security Bulletin:A security vulnerability has been identified in IBM HTTP Server used by IBM WebSphere Application Server shipped with Tivoli Network Manager IP Edition (CVE-2015-1283)
2018-06-17 15:10:40
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server used by IBM WebSphere Application Server which is shipped with IBM Workload Deployer (CVE-2015-1283)
2018-06-15 07:04:29
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with Intelligent Operations Center and related productsΒ (CVE-2015-1283)
2022-08-19 21:04:31
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:20.expat
2015-08-18 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
f5
f5
K50459349 : Expat XML library vulnerability CVE-2015-2716
2017-02-10 00:00:00
K15104541 : Expat XML library vulnerability CVE-2015-1283
2016-10-11 00:00:00
SOL22232964 - Expat XML library vulnerability CVE-2016-4472
2016-10-21 00:00:00
archlinux
archlinux
expat: arbitrary code execution
2016-05-18 00:00:00
lib32-expat: arbitrary code execution
2016-05-18 00:00:00
expat: arbitrary code execution
2016-03-24 00:00:00
amazon
amazon
Medium: expat
2020-05-11 20:41:00
cloudfoundry
cloudfoundry
USN-2740-1 ICU Vulnerabilities | Cloud Foundry
2015-10-07 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.038 Low

EPSS

Percentile

90.9%

JSON
Related for ASA-201507-18
threatpost1openvas19kaspersky1nessus29chrome1mageia4redhat1freebsd2suse5securityvulns6debian7osv5ubuntu4veracode2cve20prion20debiancve19ubuntucve20packetstorm1ibm22freebsd_advisory1gentoo1f53archlinux3amazon1cloudfoundry1