Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-1304HistoryOct 12, 2015 - 1:59 a.m.
CVE-2015-1304
2015-10-1201:59:00
Debian Security Bug Tracker
security-tracker.debian.org
9
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does not properly restrict method calls on access-checked objects, which allows remote attackers to bypass the Same Origin Policy via a (1) observe or (2) getNotifier call.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | chromium-browser | < 70.0.3538.110-1~deb9u1 | chromium-browser_70.0.3538.110-1~deb9u1_all.deb |
| Debian | 9 | all | libv8-3.14 | <= 3.14.5.8-11 | libv8-3.14_3.14.5.8-11_all.deb |
Related
ubuntucve
ubuntucve
CVE-2015-1304
2015-09-29 00:00:00
prion
prion
Design/Logic Flaw
2015-10-12 01:59:00
seebug
seebug
cve
cve
CVE-2015-1304
2015-10-12 01:59:00
securityvulns
securityvulns
Oxide security vulnerabilities
2015-10-11 00:00:00
[USN-2757-1] Oxide vulnerabilities
2015-10-11 00:00:00
Google Chrome / Chromium / Oxide multiple security vulnerabilities
2015-10-25 00:00:00
archlinux
archlinux
chromium: cross-origin bypass
2015-09-28 00:00:00
openvas
openvas
SuSE Update for Chromium openSUSE-SU-2015:1719-1 (Chromium)
2015-10-13 00:00:00
Ubuntu: Security Advisory (USN-2757-1)
2015-10-06 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Oct 2015) - Mac OS X
2015-10-19 00:00:00
nessus
nessus
Google Chrome < 45.0.2454.101 Multiple Vulnerabilities
2015-12-04 00:00:00
openSUSE Security Update : Chromium (openSUSE-2015-649)
2015-10-12 00:00:00
Google Chrome < 45.0.2454.101 Multiple Vulnerabilities
2015-09-30 00:00:00
chrome
chrome
Stable Channel Update
2015-09-24 00:00:00
redhat
redhat
(RHSA-2015:1841) Important: chromium-browser security update
2015-09-29 00:00:00
kaspersky
kaspersky
KLA10673 Security bypass vulnerabilties at Google Chrome
2015-09-24 00:00:00
suse
suse
Security update for Chromium (important)
2015-10-11 14:09:40
Security update for Chromium (important)
2015-11-02 16:35:34
mageia
mageia
Updated chromium-browser packages fix security vulnerabilities
2015-10-04 00:15:27
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-09-24 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-10-05 00:00:00
debian
debian
[SECURITY] [DSA 3376-1] chromium-browser security update
2015-10-21 03:08:24
[SECURITY] [DSA 3376-1] chromium-browser security update
2015-10-21 03:08:24
osv
osv
chromium-browser - security update
2015-10-20 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for DEBIANCVE:CVE-2015-1304