9 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-1716
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the RuntimeSetPrototype function in runtime.cc in Google V8, as used in Google Chrome before 34.0.1847.116, allows...
Mageia: Security Advisory (MGASA-2014-0183)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : chromium (openSUSE-SU-2014:0601-1)
This chromium version update fixes the following security and non-security issues : - Add patch chromium-fix-arm-skia-memset.patch to resolve a linking issue on ARM with regards to missing symbols. - Add patch armusegold.patch to use the right gold binaries on ARM. Hopefully this resolves the bui...
Updated chromium-browser packages fix multiple security vulnerabilities
Updated chromium-browser-stable packages fix security vulnerabilities: Multiple vulnerabilities in the V8 JavaScript library, including a UXSS issue CVE-2014-1716, OOB access CVE-2014-1717, memory corruption CVE-2014-1721, and other vulnerabilities fixed in V8 version 3.24.35.22 CVE-2014-1729...
[SECURITY] [DSA 2905-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2905-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 15, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2905-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2905-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 15, 2014 http://www.debian.org/security/faq -...
Google V8 Runtime_SetPrototype()函数访问检查缺失漏洞
CVE ID:CVE-2014-1716 Google Chrome是一款流行的WEB浏览器。 Google V8存在一个通用跨站脚本漏洞,由于对RuntimeSetPrototype函数runtime.cc访问检查缺失,可导致对显示给用户的输入缺少正确校验,攻击者可构建特制请求,以用户会话上下文执行任意脚本代码。 0 Google Chrome 33.0.1750.154 Google Chrome 33.0.1750.152 Google Chrome 34.0.1847.116版本已修复该漏洞,建议用户下载使用: https://www.google.com/chrome/...
CVE-2014-1716
CVE-2014-1716 is a cross-site scripting (UXSS) vulnerability in Google V8’s Runtime_SetPrototype function (runtime.cc) affecting Google Chrome/Chromium prior to 34.0.1847.116. Exploitation could allow remote attackers to inject script/HTML via unspecified vectors. Publicly documented fixes includ...
Stable Channel Update
The Chrome Team is excited to announce the promotion of Chrome 34 to the Stable channel for Windows, Mac, and Linux. Chrome 34.0.1847.116 contains a number of fixes and improvements, including: Responsive Images and Unprefixed Web Audio Import supervised users onto new computers A number of new...