chromium-browser: various fixes from internal audits

🗓️ 27 Jan 2016 11:26:55Reported by RedHatType

Chromium fixes from internal audits; remote URL spoofing via unfocused CustomButton::AcceleratorPressed in Chrome before 48.0.2564.82.

Reporter	Title	Published	Views	Family All 46
FreeBSD	chromium -- multiple vulnerabilities	20 Jan 201600:00	–	freebsd
ArchLinux	chromium: multiple issues	25 Jan 201600:00	–	archlinux
BDU FSTEC	The vulnerability of Google Chrome’s browser allows a hacker to replace URLs.	24 Feb 201600:00	–	bdu_fstec
CNVD	Google Chrome URL Forgery Vulnerability	28 Jan 201600:00	–	cnvd
CVE	CVE-2016-1616	25 Jan 201611:00	–	cve
Cvelist	CVE-2016-1616	25 Jan 201611:00	–	cvelist
Debian	[SECURITY] [DSA 3456-1] chromium-browser security update	27 Jan 201612:58	–	debian
Debian	[SECURITY] [DSA 3456-1] chromium-browser security update	27 Jan 201612:58	–	debian
Debian CVE	CVE-2016-1616	25 Jan 201611:00	–	debiancve
Tenable Nessus	Debian DSA-3456-1 : chromium-browser - security update	28 Jan 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	6	i686	chromium-browser	0:48.0.2564.82-1.el6	chromium-browser-0:48.0.2564.82-1.el6.i686.rpm
Red Hat Enterprise Linux	6	x86_64	chromium-browser	0:48.0.2564.82-1.el6	chromium-browser-0:48.0.2564.82-1.el6.x86_64.rpm
Red Hat Enterprise Linux	6	i686	chromium-browser-debuginfo	0:48.0.2564.82-1.el6	chromium-browser-debuginfo-0:48.0.2564.82-1.el6.i686.rpm
Red Hat Enterprise Linux	6	x86_64	chromium-browser-debuginfo	0:48.0.2564.82-1.el6	chromium-browser-debuginfo-0:48.0.2564.82-1.el6.x86_64.rpm

Source	Link
googlechromereleases	www.googlechromereleases.blogspot.com/2016/01/stable-channel-update_20.html
access	www.access.redhat.com/security/cve/CVE-2016-1616
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-1616
cve	www.cve.org/CVERecord

13 Jan 2026 21:10Current

7.4High risk

Vulners AI Score7.4

CVSS 34.3

CVSS 24.3

EPSS0.0118