OPENSUSE-SU-2026:20575-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 147.0.7727.55 boo1261758: CVE-2026-5858: Heap buffer overflow in WebML CVE-2026-5859: Integer overflow in WebML CVE-2026-5860: Use after free in WebRTC CVE-2026-5861: Use after free in V8 CVE-2026-5862: Inappropriate implementation in ...

Google Chrome < 4.1.0.21 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 4.1.0.21. It is, therefore, affected by multiple vulnerabilities as referenced in the 201503stable-channel-update advisory. - Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM...

EUVD-2016-6139

Malware in sbrugna...

EUVD-2015-1428

Malware in sbrugna...

The vulnerability of Blink’s web page display mechanism in Google Chrome browser allows attackers to obtain URLs of cross-origin origins.

The vulnerability of Blink’s web page rendering mechanism in Google Chrome browsers is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain cross-origin URLs through a specially created HTML page...

USN-2992-1 oxide-qt vulnerabilities

An unspecified security issue was discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin restrictions. CVE-2016-1673 An issue was discovered with Document reattachment in Blink in some circumstances. ...

USN-2960-1 oxide-qt vulnerabilities

An out of bounds write was discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code. CVE-2016-1660 It was discovered that Blink assumes that a frame...

USN-2920-1 oxide-qt vulnerabilities

It was discovered that the ContainerNode::parserRemoveChild function in Blink mishandled widget updates in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin restrictions. CVE-2016-1630 It was...

USN-2735-1 oxide-qt vulnerabilities

It was discovered that the DOM tree could be corrupted during parsing in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin restrictions or cause a denial of service. CVE-2015-1291 An issue was...

USN-2610-1 oxide-qt vulnerabilities

Several security issues were discovered in the DOM implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to bypass Same Origin Policy restrictions. CVE-2015-1253, CVE-2015-1254 A use-after-free was discovered in the...