5 matches found
Google Chrome V8 Denial of Service Vulnerability (CNVD-2015-08180)
Google Chrome is the United States Google Google company developed a Web browser. Google V8 is one of the open source JavaScript engine. A security vulnerability exists in the 'BasicJsonStringifier::: SerializeJSArray' function in the json-stringifier.h file in the JSON stringifier of Google V8...
UBUNTU-CVE-2015-8479
Use-after-free vulnerability in the AudioOutputDevice::OnDeviceAuthorized function in media/audio/audiooutputdevice.cc in Google Chrome before 47.0.2526.73 allows attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact by triggering access to an...
UBUNTU-CVE-2015-6785
The CSPSource::hostMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy CSP implementation in Google Chrome before 47.0.2526.73 accepts an x.y hostname as a match for a .x.y pattern, which might allow remote attackers to bypass intended access restrictions...
UBUNTU-CVE-2015-6786
The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList.cpp in the Content Security Policy CSP implementation in Google Chrome before 47.0.2526.73 accepts a blob:, data:, or filesystem: URL as a match for a pattern, which allows remote attackers to bypass intended scheme...
UBUNTU-CVE-2015-8478
Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as used in Google Chrome before 47.0.2526.73, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...