10 matches found
SUSE CVE-2013-6657
core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 33.0.1750.117, inserts the about:blank URL during certain blocking of FORM elements within HTTP requests, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information vi...
Mageia: Security Advisory (MGASA-2014-0107)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : chromium (openSUSE-SU-2014:0327-1)
Chromium was updated to 33.0.1750.117 Stable channel update : - Security Fixes : - CVE-2013-6653: Use-after-free related to web contents - CVE-2013-6654: Bad cast in SVG - CVE-2013-6655: Use-after-free in layout - CVE-2013-6656: Information leak in XSS auditor - CVE-2013-6657: Information leak in...
[SECURITY] [DSA 2883-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2883-1 [email protected] http://www.debian.org/security/ Michael Gilbert March 23, 2014 http://www.debian.org/security/faq -...
Updated chromium-browser-stable packages address multiple vulnerabilities
Use-after-free related to web contents CVE-2013-6653. Bad cast in SVG CVE-2013-6654. Use-after-free in layout CVE-2013-6655. Information leaks in XSS auditor CVE-2013-6656, CVE-2013-6657. Use-after-free in layout CVE-2013-6658. Issue with certificates validation in TLS handshake CVE-2013-6659...
FreeBSD : chromium -- multiple vulnerabilities (9dd47fa3-9d53-11e3-b20f-00262d5ed8ee)
Google Chrome Releases reports : 28 security fixes in this release, including : - 334897 High CVE-2013-6652: Issue with relative paths in Windows sandbox named pipe policy. Credit to tyranid. - 331790 High CVE-2013-6653: Use-after-free related to web contents. Credit to Khalil Zhani. - 333176 Hig...
CVE-2013-6657
CVE-2013-6657 affects Blink’s XSS auditor in Google Chrome prior to 33.0.1750.117. The description from multiple sources states that the XSS auditor’s handling of FORM elements within HTTP requests could insert the about:blank URL, enabling a bypass of the Same Origin Policy and allowing a leakag...
Google Chrome < 33.0.1750.117 Multiple Vulnerabilities
Binary data 8130.pasl...
chromium -- multiple vulnerabilities
Google Chrome Releases reports: 28 security fixes in this release, including: 334897 High CVE-2013-6652: Issue with relative paths in Windows sandbox named pipe policy. Credit to tyranid. 331790 High CVE-2013-6653: Use-after-free related to web contents. Credit to Khalil Zhani. 333176 High...
Stable Channel Update
The Stable Channel has been updated to 33.0.1750.117 for Windows, Mac, and Linux. Security Fixes and Rewards This update includes 28 security fixes. Below, we highlight fixes that were either contributed by external researchers or particularly interesting. Please see the Chromium security page fo...