Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2015-3334

HistoryApr 19, 2015 - 10:59 a.m.

CVE-2015-3334

2015-04-1910:59:00

Debian Security Bug Tracker

security-tracker.debian.org

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

JSON

browser/ui/website_settings/website_settings.cc in Google Chrome before 42.0.2311.90 does not always display “Media: Allowed by you” in a Permissions table after the user has granted camera permission to a web site, which might make it easier for user-assisted remote attackers to obtain sensitive video data from a device’s physical environment via a crafted web site that turns on the camera at a time when the user believes that camera access is prohibited.

OSVersionArchitecturePackageVersionFilename
Debian9allchromium-browser< 70.0.3538.110-1~deb9u1chromium-browser_70.0.3538.110-1~deb9u1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	9	all	chromium-browser	< 70.0.3538.110-1~deb9u1	chromium-browser_70.0.3538.110-1~deb9u1_all.deb

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

JSON

Related for DEBIANCVE:CVE-2015-3334