Incorrect handling of CORS in ServiceWorker in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | chromium | <Â 74.0.3729.108-1 | chromium_74.0.3729.108-1_all.deb |
Debian | 11 | all | chromium | <Â 74.0.3729.108-1 | chromium_74.0.3729.108-1_all.deb |
Debian | 10 | all | chromium | <Â 76.0.3809.100-1~deb10u1 | chromium_76.0.3809.100-1~deb10u1_all.deb |
Debian | 999 | all | chromium | <Â 74.0.3729.108-1 | chromium_74.0.3729.108-1_all.deb |
Debian | 13 | all | chromium | <Â 74.0.3729.108-1 | chromium_74.0.3729.108-1_all.deb |