EUVD-2016-2737

Malware in sbrugna...

Security update for Chromium (important)

Chromium was updated to 49.0.2623.75 to fix the following security issues: boo969333 - CVE-2016-1630: Same-origin bypass in Blink - CVE-2016-1631: Same-origin bypass in Pepper Plugin - CVE-2016-1632: Bad cast in Extensions - CVE-2016-1633: Use-after-free in Blink - CVE-2016-1634: Use-after-free i...

Google Chrome Extensions UI Design Vulnerability

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the implementation of the Web Store inline-installer in the Extensions UI of Google Chrome prior to version 49.0.2623.75, which stems from the program's failure to limit the...

Google Chrome Extensions Subsystem Security Bypass Vulnerability (CNVD-2016-01516)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the extensions/renderer/resources/platformapp.js file in the Extensions subsystem of Google Chrome prior to version 49.0.2623.75, which stems from the program's failure to correctly...

Google Chrome Denial of Service Vulnerability (CNVD-2016-01509)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the file extensions/renderer/renderframeobservernatives.cc in versions of Google Chrome prior to 49.0.2623.75, which stems from the program's failure to, during processing of...

Google Chrome Pepper plugin same-origin policy bypass vulnerability

Google Chrome is a web browser developed by Google, and Pepper is a player plug-in for playing Flash videos. Versions of the Pepper plugin prior to Google Chrome 49.0.2623.75 have the file content/renderer/pepper/ppbflashmessageloopimpl.cc in the file 'PPBFlashMessageLoop A security vulnerability...

Google Chrome WebRTC Audio Private API Memory Misreference Vulnerability

Google Chrome is a web browser developed by the American company Google Google. A memory misreference vulnerability exists in the browser/extensions/api/webrtcaudioprivate/webrtcaudioprivateapi.cc file in the implementation of the WebRTC Audio Private API in versions of Google Chrome prior to...

chromium-browser: use-after-free in Blink

Use-after-free vulnerability in Blink, as used in Google Chrome before 49.0.2623.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

chromium-browser: use-after-free in WebRTC

Use-after-free vulnerability in browser/extensions/api/webrtcaudioprivate/webrtcaudioprivateapi.cc in the WebRTC Audio Private API implementation in Google Chrome before 49.0.2623.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging...

Important: Red Hat Security Advisory: chromium-browser security update

Updated chromium-browser packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severit...

CVE-2016-1635

extensions/renderer/renderframeobservernatives.cc in Google Chrome before 49.0.2623.75 does not properly consider object lifetimes and re-entrancy issues during OnDocumentElementCreated handling, which allows remote attackers to cause a denial of service use-after-free or possibly have unspecifie...

Google Releases Security Update for Chrome

Google has released Chrome version 49.0.2623.75 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Chrome Releases...