Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201606-5
HistoryJun 05, 2016 - 12:00 a.m.

chromium: multiple issues

2016-06-0500:00:00
Arch Linux
lists.archlinux.org
18

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.022 Low

EPSS

Percentile

88.2%

JSON
  • CVE-2016-1696 (cross-origin bypass):

Cross-origin bypass in Extension bindings. Credit to anonymous.

  • CVE-2016-1697 (cross-origin bypass):

Cross-origin bypass in Blink. Credit to Mariusz Mlynski.

  • CVE-2016-1698 (information leakage):

Information leak in Extension bindings. Credit to Rob Wu.

  • CVE-2016-1699 (parameter sanitization failure):

Parameter sanitization failure in DevTools. Credit to Gregory Panakkal.

  • CVE-2016-1700 (use-after-free):

Use-after-free in Extensions. Credit to Rob Wu.

  • CVE-2016-1701 (use-after-free):

Use-after-free in Autofill. Credit to Rob Wu.

  • CVE-2016-1702 (out-of-bounds read):

Out-of-bounds read in Skia. Credit to cloudfuzzer.

  • CVE-2016-1703:

Various fixes from internal audits, fuzzing and other initiatives.

OSVersionArchitecturePackageVersionFilename
anyanyanychromium< 51.0.2704.79-1UNKNOWN

Related

openvas 9
kaspersky 1
redhat 1
nessus 9
mageia 1
suse 3
chrome 1
debian 2
osv 1
threatpost 1
freebsd 1
debiancve 9
prion 9
cve 9
zdi 1
ubuntucve 9
redhatcve 9
seebug 1
ubuntu 1
openvas
openvas
Google Chrome Security Updates (stable-channel-update-2016-06) - Mac OS X
2016-06-03 00:00:00
Mageia: Security Advisory (MGASA-2016-0218)
2022-01-28 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:1489-1)
2016-06-05 00:00:00
kaspersky
kaspersky
KLA10818 Multiple vulnerabilities in Google Chrome
2016-06-01 00:00:00
redhat
redhat
(RHSA-2016:1201) Important: chromium-browser security update
2016-06-02 17:50:17
nessus
nessus
Google Chrome < 51.0.2704.79 Multiple Vulnerabilities
2016-06-16 00:00:00
Google Chrome < 51.0.2704.79 Multiple Vulnerabilities (Mac OS X)
2016-06-03 00:00:00
Google Chrome < 51.0.2704.79 Multiple Vulnerabilities
2016-06-03 00:00:00
mageia
mageia
Updated chromium-browser-stable/libpng packages fix security vulnerability
2016-06-08 00:39:50
suse
suse
Security update for Chromium (important)
2016-06-04 12:07:57
Security update for Chromium (important)
2016-06-04 12:07:41
Security update for Chromium (important)
2016-06-05 16:07:48
chrome
chrome
Stable Channel Update
2016-06-01 00:00:00
debian
debian
[SECURITY] [DSA 3594-1] chromium-browser security update
2016-06-04 18:04:06
[SECURITY] [DSA 3594-1] chromium-browser security update
2016-06-04 18:04:44
osv
osv
chromium-browser - security update
2016-06-04 00:00:00
threatpost
threatpost
Google Patches Two High-Severity Flaws in Chrome
2016-06-02 12:59:38
freebsd
freebsd
chromium -- multiple vulnerabilities
2016-06-01 00:00:00
debiancve
debiancve
CVE-2016-1696
2016-06-05 23:59:00
CVE-2016-1703
2016-06-05 23:59:00
CVE-2016-1700
2016-06-05 23:59:00
prion
prion
Design/Logic Flaw
2016-06-05 23:59:00
Design/Logic Flaw
2016-06-05 23:59:00
Design/Logic Flaw
2016-06-05 23:59:00
cve
cve
CVE-2016-1703
2016-06-05 23:59:00
CVE-2016-1700
2016-06-05 23:59:00
CVE-2016-1696
2016-06-05 23:59:00
zdi
zdi
Trend Micro Maximum Security Regex Matching Use-After-Free Remote Code Execution Vulnerability
2018-02-27 00:00:00
ubuntucve
ubuntucve
CVE-2016-1696
2016-06-05 00:00:00
CVE-2016-1703
2016-06-06 00:00:00
CVE-2016-1698
2016-06-05 00:00:00
redhatcve
redhatcve
CVE-2016-1703
2016-06-02 09:19:59
CVE-2016-1700
2016-06-02 09:20:08
CVE-2016-1702
2016-06-02 09:19:49
seebug
seebug
Chrome Universal XSS via reentrancy in FrameLoader::startLoad (CVE-2016-1697)
2017-04-21 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2016-06-06 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.022 Low

EPSS

Percentile

88.2%

JSON
Related for ASA-201606-5
openvas9kaspersky1redhat1nessus9mageia1suse3chrome1debian2osv1threatpost1freebsd1debiancve9prion9cve9zdi1ubuntucve9redhatcve9seebug1ubuntu1