USN-5536-1 firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the mouse pointer position, bypass Subresource Integrity protections, obtain sensitive information,...

USN-2920-1 oxide-qt vulnerabilities

It was discovered that the ContainerNode::parserRemoveChild function in Blink mishandled widget updates in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin restrictions. CVE-2016-1630 It was...

Google Chrome Security Bypass Vulnerability (CNVD-2016-01515)

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the 'PendingScript::notifyFinished' function in the WebKit/Source/core/dom/PendingScript.cpp file in Google Chrome versions prior to 49.0.2623.75. A security vulnerability exists...

chromium-browser: SRI Validation Bypass

The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity...