9 matches found
Mageia: Security Advisory (MGASA-2015-0235)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : Chromium (openSUSE-2015-390)
Chromium was updated to 43.0.2357.65 to fix security issues and bugs. The following vulnerabilities were fixed : - CVE-2015-1251: Use-after-free in Speech boo931659 - CVE-2015-1252: Sandbox escape in Chrome boo931671 - CVE-2015-1253: Cross-origin bypass in DOM boo931670 - CVE-2015-1254:...
Google Chrome Multiple Vulnerabilities - 02 - (May 2015) - Mac OS X
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
[SECURITY] [DSA 3267-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3267-1 [email protected] http://www.debian.org/security/ Michael Gilbert May 22, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3267-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3267-1 [email protected] http://www.debian.org/security/ Michael Gilbert May 22, 2015 http://www.debian.org/security/faq -...
USN-2610-1: Oxide vulnerabilities
Several security issues were discovered in the DOM implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to bypass Same Origin Policy restrictions. CVE-2015-1253, CVE-2015-1254 A use-after-free was discovered in the...
CVE-2015-1254
CVE-2015-1254 affects Blink (core/dom/Document.cpp) used in Google Chrome before 43.0.2357.65. Root cause: inheritance of the designMode attribute, enabling a Same Origin Policy bypass via editing capabilities. Impact: cross-origin bypass potential in the DOM editing feature. Affected product lin...
CVE-2015-1254
core/dom/Document.cpp in Blink, as used in Google Chrome before 43.0.2357.65, enables the inheritance of the designMode attribute, which allows remote attackers to bypass the Same Origin Policy by leveraging the availability of editing...
FreeBSD : chromium -- multiple vulnerabilities (a9d456b4-fe4c-11e4-ad15-00262d5ed8ee)
Google Chrome Releases reports : 37 security fixes in this release, including : - 474029 High CVE-2015-1252: Sandbox escape in Chrome. Credit to anonymous. - 464552 High CVE-2015-1253: Cross-origin bypass in DOM. Credit to anonymous. - 444927 High CVE-2015-1254: Cross-origin bypass in Editing...