Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-1285HistoryJul 23, 2015 - 12:59 a.m.
CVE-2015-1285
2015-07-2300:59:00
Debian Security Bug Tracker
security-tracker.debian.org
5
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
The XSSAuditor::canonicalize function in core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 44.0.2403.89, does not properly choose a truncation point, which makes it easier for remote attackers to obtain sensitive information via an unspecified linear-time attack.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | chromium-browser | < 70.0.3538.110-1~deb9u1 | chromium-browser_70.0.3538.110-1~deb9u1_all.deb |
Related
prion
prion
Information disclosure
2015-07-23 00:59:00
cve
cve
CVE-2015-1285
2015-07-23 00:59:00
ubuntucve
ubuntucve
CVE-2015-1285
2015-07-22 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-08-04 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2677-1)
2015-08-05 00:00:00
Google Chrome < 44.0.2403.89 Multiple Vulnerabilities
2015-07-22 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2677-1)
2015-08-05 00:00:00
Mageia: Security Advisory (MGASA-2015-0288)
2015-10-15 00:00:00
Google Chrome Multiple Vulnerabilities-01 (Jul 2015) - Linux
2015-07-23 00:00:00
mageia
mageia
Updated chromium-browser package fixes security vulnerabilities
2015-07-27 20:45:18
threatpost
threatpost
Google Patches 43 Bugs in Chrome
2015-07-22 09:23:06
redhat
redhat
(RHSA-2015:1499) Important: chromium-browser security update
2015-07-27 00:00:00
archlinux
archlinux
chromium: multiple issues
2015-07-23 00:00:00
kaspersky
kaspersky
KLA10636 Multiple vulnerabilities in Google Chrome
2015-07-21 00:00:00
chrome
chrome
Stable Channel Update
2015-07-21 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-07-21 00:00:00
suse
suse
Security update for Chromium (important)
2015-07-26 21:08:24
securityvulns
securityvulns
Google Chrome / Chromium multiple security vulnerabilities
2015-07-26 00:00:00
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-26 00:00:00
debian
debian
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
osv
osv
chromium-browser - security update
2015-07-23 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related for DEBIANCVE:CVE-2015-1285