CVE-2017-0893

Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are shipping a vulnerable JavaScript library for sanitizing untrusted user-input which suffered from a XSS vulnerability caused by a behaviour change in Safari 10.1 and 10.2. Note that Nextcloud employs a strict Content-Security-Policy preventi...

Debian Security Advisory DSA 3810-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5029 Holger Fuhrmannek discovered an integer overflow issue in the libxslt library. CVE-2017-5030 Brendon Tiszka discovered a memory corruption issue in the v8 javascript library. CVE-2017-5031 Looben Yang discover...

Debian Security Advisory DSA 3776-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5006 Mariusz Mlynski discovered a cross-site scripting issue. CVE-2017-5007 Mariusz Mlynski discovered another cross-site scripting issue. CVE-2017-5008 Mariusz Mlynski discovered a third cross-site scripting issue...

Debian DSA-3776-1 : chromium-browser - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2017-5006 Mariusz Mlynski discovered a cross-site scripting issue. - CVE-2017-5007 Mariusz Mlynski discovered another cross-site scripting issue. - CVE-2017-5008 Mariusz Mlynski discovered a third cross-site scripting...

UBUNTU-CVE-2013-7453

The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting XSS filter via vectors related to UI redressing...

[SECURITY] Fedora 24 Update: js-jquery-2.2.4-1.fc24

jQuery is a fast, small, and feature-rich JavaScript library. It makes thin gs like HTML document traversal and manipulation, event handling, animation, a nd Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility,...

[SECURITY] Fedora 25 Update: js-jquery1-1.12.4-2.fc25

jQuery is a fast, small, and feature-rich JavaScript library. It makes thin gs like HTML document traversal and manipulation, event handling, animation, a nd Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility,...

[SECURITY] Fedora 25 Update: js-jquery-2.2.4-1.fc25

jQuery is a fast, small, and feature-rich JavaScript library. It makes thin gs like HTML document traversal and manipulation, event handling, animation, a nd Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility,...

Debian DSA-3731-1 : chromium-browser - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2016-5181 A cross-site scripting issue was discovered. - CVE-2016-5182 Giwan Go discovered a heap overflow issue. - CVE-2016-5183 A use-after-free issue was discovered in the pdfium library. - CVE-2016-5184 Another...

Debian Security Advisory DSA 3731-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-5181 A cross-site scripting issue was discovered. CVE-2016-5182 Giwan Go discovered a heap overflow issue. CVE-2016-5183 A use-after-free issue was discovered in the pdfium library. CVE-2016-5184 Another...

Limny 3.0.0 Cross Site Scripting

======================================================================== | Title : limny 3.0.0 xss vulnerability | Author : indoushka | email : [email protected] | Tested on : windows 8.1 FranASSais V.Pro | Version : 3.0.0 | Vendor : http://www.limny.org/ | Dork : n/a...

[SECURITY] [DSA 3683-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3683-1 [email protected] https://www.debian.org/security/ Michael Gilbert October 02, 2016 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3637-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-1704 The chrome development team found and fixed various issues during internal auditing. CVE-2016-1705 The chrome development team found and fixed various issues during internal auditing. CVE-2016-1706 Pinkie Pie...

Debian DSA-3637-1 : chromium-browser - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2016-1704 The chrome development team found and fixed various issues during internal auditing. - CVE-2016-1705 The chrome development team found and fixed various issues during internal auditing. - CVE-2016-1706 Pinki...

DSA-3564-1 chromium-browser - security update

Bulletin has no description...

Debian DSA-3549-1 : chromium-browser - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2016-1651 An out-of-bounds read issue was discovered in the pdfium library. - CVE-2016-1652 A cross-site scripting issue was discovered in extension bindings. - CVE-2016-1653 Choongwoo Han discovered an out-of-bounds...

DSA-3549-1 chromium-browser - security update

Bulletin has no description...

Debian Security Advisory DSA 3549-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-1651 An out-of-bounds read issue was discovered in the pdfium library. CVE-2016-1652 A cross-site scripting issue was discovered in extension bindings. CVE-2016-1653 Choongwoo Han discovered an out-of-bounds write...

Debian DSA-3531-1 : chromium-browser - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2016-1646 Wen Xu discovered an out-of-bounds read issue in the v8 library. - CVE-2016-1647 A use-after-free issue was discovered. - CVE-2016-1648 A use-after-free issue was discovered in the handling of extensions. -...

Debian Security Advisory DSA 3531-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-1646 Wen Xu discovered an out-of-bounds read issue in the v8 library. CVE-2016-1647 A use-after-free issue was discovered. CVE-2016-1648 A use-after-free issue was discovered in the handling of extensions...