10 matches found
SUSE CVE-2014-1747
Cross-site scripting XSS vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS UXSS."...
openSUSE Security Update : chromium (openSUSE-SU-2014:0783-1)
chromium was updated to version 35.0.1916.114 to fix various security issues. Security fixes : - CVE-2014-1743: Use-after-free in styles - CVE-2014-1744: Integer overflow in audio - CVE-2014-1745: Use-after-free in SVG - CVE-2014-1746: Out-of-bounds read in media filters - CVE-2014-1747: UXSS wit...
[SECURITY] [DSA 2939-1] chromium-browser security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2939-1 [email protected] http://www.debian.org/security/ Michael Gilbert May 31, 2014 http://www.debian.org/security/faq -...
Google Chrome Multiple Vulnerabilities - 01 (Jun 2014) - Linux
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
[SECURITY] [DSA 2939-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2939-1 [email protected] http://www.debian.org/security/ Michael Gilbert May 31, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2939-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2939-1 [email protected] http://www.debian.org/security/ Michael Gilbert May 31, 2014 http://www.debian.org/security/faq -...
Google Chrome < 35.0.1916.114 Multiple Vulnerabilities
Binary data 8263.pasl...
CVE-2014-1747
CVE-2014-1747 is a UXSS-type XSS in Blink's DocumentLoader::maybeCreateArchive used by Google Chrome prior to 35.0.1916.114. The vulnerability allows remote attackers to inject arbitrary script/HTML via crafted MHTML content. Affected component is Blink/WebKit's MHTML handling in Chrome versions ...
FreeBSD : chromium -- multiple vulnerabilities (64f3872b-e05d-11e3-9dd4-00262d5ed8ee)
Google Chrome Releases reports : 23 security fixes in this release, including : - 356653 High CVE-2014-1743: Use-after-free in styles. Credit to cloudfuzzer. - 359454 High CVE-2014-1744: Integer overflow in audio. Credit to Aaron Staple. - 346192 High CVE-2014-1745: Use-after-free in SVG. Credit ...
Chrome 35 Fixes 23 Security Flaws
Google has fixed 23 security vulnerabilities in Chrome, including three high-risk flaws, and handed out $9,500 in rewards to researchers. Among the vulnerabilities that the company fixed in Chrome 35 are use-after-free flaws and an integer overflow, all of which are rated high. Google didn’t...