7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
85.0%
Chromium is an open-source web browser, powered by WebKit (Blink).
Two flaws were found in the processing of malformed web content. A web page
containing malicious content could cause Chromium to bypass cross origin
restrictions, and access or modify data from an unrelated web site.
(CVE-2015-1303, CVE-2015-1304)
All Chromium users should upgrade to these updated packages, which contain
Chromium version 45.0.2454.101, which corrects these issues. After
installing the update, Chromium must be restarted for the changes to take
effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | x86_64 | chromium-browser | < 45.0.2454.101-1.el6 | chromium-browser-45.0.2454.101-1.el6.x86_64.rpm |
RedHat | 6 | i686 | chromium-browser-debuginfo | < 45.0.2454.101-1.el6 | chromium-browser-debuginfo-45.0.2454.101-1.el6.i686.rpm |
RedHat | 6 | x86_64 | chromium-browser-debuginfo | < 45.0.2454.101-1.el6 | chromium-browser-debuginfo-45.0.2454.101-1.el6.x86_64.rpm |
RedHat | 6 | i686 | chromium-browser | < 45.0.2454.101-1.el6 | chromium-browser-45.0.2454.101-1.el6.i686.rpm |