6 matches found
Google Chrome Extensions Memory Misreference Vulnerability
Google Chrome is a web browser developed by the American company Google Google. The 'GetLoadTimes' function in the renderer/loadtimesextensionbindings.cc file in the Extensions implementation of Google Chrome prior to version 47.0.2526.73 A memory misreference vulnerability exists. A remote...
Google Chrome DOM Homology Policy Bypass Vulnerability
Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the DOM implementation of Google Chrome versions prior to 47.0.2526.73. A remote attacker can exploit the vulnerability to bypass the same-origin policy...
UBUNTU-CVE-2015-6780
Use-after-free vulnerability in the Infobars implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted web site, related to browser/ui/views/websitesettings/websitesettingspopupview.cc...
UBUNTU-CVE-2015-6765
Use-after-free vulnerability in content/browser/appcache/appcacheupdatejob.cc in Google Chrome before 47.0.2526.73 allows remote attackers to execute arbitrary code or cause a denial of service by leveraging the mishandling of AppCache update jobs...
chromium-browser: Various fixes from internal audits
Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526.73 allow attackers to cause a denial of service or possibly have other impact via unknown vectors...
chromium-browser: Wildcard matching issue in CSP
The CSPSource::hostMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy CSP implementation in Google Chrome before 47.0.2526.73 accepts an x.y hostname as a match for a .x.y pattern, which might allow remote attackers to bypass intended access restrictions...