7 matches found
SUSE CVE-2013-2879
Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site...
[SECURITY] [DSA 2724-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2724-1 [email protected] http://www.debian.org/security/ Michael Gilbert July 17, 2013 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2724-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2724-1 [email protected] http://www.debian.org/security/ Michael Gilbert July 17, 2013 http://www.debian.org/security/faq -...
Google Chrome < 28.0.1500.71 Multiple Vulnerabilities
Binary data 6920.pasl...
FreeBSD : chromium -- multiple vulnerabilities (3b80104f-e96c-11e2-8bac-00262d5ed8ee)
Google Chrome Releases reports : A special reward for Andrey Labunets for his combination of CVE-2013-2879 and CVE-2013-2868 along with some since fixed server-side bugs. 252216 Low CVE-2013-2867: Block pop-unders in various scenarios. 252062 High CVE-2013-2879: Confusion setting up sign-in and...
CVE-2013-2879
Chromium/Chrome vulnerability CVE-2013-2879: Chrome before 28.0.1500.71 fails to correctly determine when a renderer process is trusted for sign-in and subsequent sync, enabling phishing via a crafted site. This affects Chrome/Chromium up to the 28.x branch and is described in multiple advisories...
Stable Channel Update
Update: We are separately updating users to Flash Player 11.8.800.97 via our component updater. The Stable channel has been updated to 28.0.1500.71 for Windows, Macintosh and Chrome Frame platforms. Security fixes and rewards: Please see the Chromium security page for more information. Note that...