Chrome Universal XSS using stack overflow exceptions (CVE-2015-1303)

VULNERABILITY DETAILS When the maximum call stack size is exceeded, a RangeError object is created using isolate's current context. Thus, if a cross-origin context had been entered through the V8WrapperInstantiationScope constructor, for example, a cross-origin exception will be propagated to the...

Chrome Universal XSS by circumventing the unload event ( CVE-2016-1623)

VULNERABILITY DETAILS From /thirdparty/WebKit/Source/core/dom/Document.cpp: void Document::dispatchUnloadEvents PluginScriptForbiddenScope forbidPluginDestructorScripting; RefPtrWillBeRawPtrprotectthis; if mparser mparser-stopParsing; if mloadEventProgress == LoadEventNotRun return; if...

Google Plans to End Chrome for 32-bit Linux, Releases Chrome 47

Google announced this week it will end Chrome support for older, 32-bit Linux distributions early next year and will maintain the browser on more popular distributions of the software. Specifically Google plans to stop pushing updates and security fixes to those running Chrome on 32-bit Linux,...