9 matches found
Chrome Universal XSS via the interception of |Binding| with Object.prototype.create (CVE-2016-1674)
VULNERABILITY DETAILS The fix for the issue 590118 is insufficient to protect against the bindings interception. While they can't be accessed by triggering accessors on the |modules| object anymore, it's still possible to trap the set operation for |Binding. create| using the Object. prototype...
Google Chrome < 49.0.2623.108 Multiple Vulnerabilities
Binary data 9204.pasl...
Mageia: Security Advisory (MGASA-2016-0127)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome GetLoadTimes Memory Misreference Vulnerability
Google Chrome is a web browsing tool developed by Google. In Google Chrome versions prior to 49.0.2623.108, a memory misreference vulnerability exists in the Extensions/renderer/loadtimesextensionbindings.cc/GetLoadTimes function, which can be exploited by remote attackers to cause a denial of...
Google Chrome Program::getUniformInternal Denial of Service Vulnerability
Google Chrome is a web browsing tool developed by Google. In versions of Google Chrome prior to 49.0.2623.108, libANGLE/Program.cpp/Program::getUniformInternal does not properly handle certain data type mismatches, which can be exploited by remote attackers to cause a denial of service...
Google Chrome V8 Denial of Service Vulnerability (CNVD-2016-01957)
Google Chrome is a web browsing tool developed by Google. A denial of service vulnerability exists in the implementation of Google Chrome prior to 49.0.2623.108, Google V8 prior to 4.9.385.33, which can be exploited by remote attackers to cause a denial of service...
Google Chrome PageCaptureSaveAsMHTMLFunction::ReturnFailure Denial of Service Vulnerability
Google Chrome is a web browsing tool developed by Google. Google Chrome versions prior to 49.0.2623.108, browser/extensions/api/pagecapture/pagecaptureapi.cc/PageCaptureSaveAsMHTMLFunction:. A denial of service vulnerability exists in the ReturnFailure implementation, which can be exploited by...
Google Fixes Four Critical Vulnerabilities in Latest Chrome Build
Google pushed out the latest version of Chrome Thursday afternoon, fixing five issues, four of them critical. The update remedies an out-of-bounds read in Chrome’s open source JavaScript engine V8, two use-after-free vulnerabilities – one in Navigation and one in Extensions – and a buffer overflo...
Stable Channel Update
The stable channel has been updated to 49.0.2623.108 for Windows, Mac, and Linux. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library...