5 matches found
USN-2474-1: curl vulnerability
Andrey Labunets discovered that curl incorrectly handled certain URLs when using a proxy server. If a user or automated system were tricked into using a specially crafted URL, an attacker could possibly use this issue to inject arbitrary HTTP requests...
DLA-134-1 curl - security update
Bulletin has no description...
FreeBSD : chromium -- multiple vulnerabilities (3b80104f-e96c-11e2-8bac-00262d5ed8ee)
Google Chrome Releases reports : A special reward for Andrey Labunets for his combination of CVE-2013-2879 and CVE-2013-2868 along with some since fixed server-side bugs. 252216 Low CVE-2013-2867: Block pop-unders in various scenarios. 252062 High CVE-2013-2879: Confusion setting up sign-in and...
Google Fixes 17 Flaws in Chrome 28
Google has fixed more than 15 vulnerabilities in Chrome and paid out nearly $35,000 in rewards to security researchers for reporting the bugs. One researcher earned an unusually large reward of $21,500 for a series of vulnerabilities he reported in Chrome. Google Chrome 28 includes fixes for thre...
Stable Channel Update
Update: We are separately updating users to Flash Player 11.8.800.97 via our component updater. The Stable channel has been updated to 28.0.1500.71 for Windows, Macintosh and Chrome Frame platforms. Security fixes and rewards: Please see the Chromium security page for more information. Note that...