12 matches found
Mageia: Security Advisory (MGASA-2015-0141)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated chromium-browser-stable packages fix security vulnerabilities
Updated chromium-browser-stable packages fix security vulnerabilities: Google Chrome before 41.0.2272.118 does not properly handle the interaction of IPC, the Gamepad API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors CVE-2015-1233. Race condition ...
openSUSE Security Update : Chromium (openSUSE-2015-298)
Chromium was updated to 41.0.2272.118 to fix two security issues. The following vulnerabilities were fixed : - A combination of V8, Gamepad and IPC bugs could lead to remote code execution outside of the sandbox CVE-2015-1233, boo925713 - Buffer overflow via race condition in GPU CVE-2015-1234,...
openSUSE: Security Advisory for Chromium (openSUSE-SU-2015:0682-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2556-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2556-1 advisory. It was discovered that Chromium did not properly handle the interaction of IPC, the gamepad API and V8. If a user were tricked in to opening a specially...
USN-2556-1: Oxide vulnerabilities
It was discovered that Chromium did not properly handle the interaction of IPC, the gamepad API and V8. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to execute arbitrary code with the privileges of the user invoking the program...
RHEL 6 : chromium-browser (RHSA-2015:0778)
Updated chromium-browser packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
Critical: Red Hat Security Advisory: chromium-browser security update
Updated chromium-browser packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
Google Chrome < 41.0.2272.118 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 41.0.2272.118. It is, therefore, affected by multiple vulnerabilities as referenced in the 201504stable-channel-update advisory. - Google Chrome before 41.0.2272.118 does not properly handle the interaction of IPC, the...
Google Chrome < 41.0.2272.118 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 41.0.2272.118. It is, therefore, affected by multiple vulnerabilities as referenced in the 201504stable-channel-update advisory. - Google Chrome before 41.0.2272.118 does not properly handle the interaction of IPC, the...
CVE-2015-1233
CVE-2015-1233/1234 affect Chromium/Google Chrome up to 41.0.2272.118: remote code execution via a combination of V8, Gamepad, and IPC bugs, and a race-condition in GPU commands could cause DoS or other impact. Multiple Nessus/Gentoo/OpenSUSE/Mageia advisories confirm the issues and cite version 4...
KLA10524 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or have other unknown impact. Below is a complete list of vulnerabilities 1. Improper IPC interaction handling can be exploited...