SUSE CVE-2016-1636

The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity...

The vulnerability of Google Chrome’s browser allows a violator to bypass mechanisms designed to protect the integrity of subresources.

The vulnerability of the PendingScript::notifyFinished function in Google Chrome’s WebKit/Source/core/dom/PendingScript.cpp is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass Subresource Integrity SRI protection mechanisms by...

Google Chrome Security Bypass Vulnerability (CNVD-2016-01515)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the 'PendingScript::notifyFinished' function in the WebKit/Source/core/dom/PendingScript.cpp file in Google Chrome versions prior to 49.0.2623.75. A security vulnerability exists...

UBUNTU-CVE-2016-1636

The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity...