Lucene search
K

12 matches found

seebug.org
seebug.org
added 2017/04/24 12:0 a.m.36 views

Chrome Universal XSS via ContainerNode::parserInsertBefore (CVE-2015-6755)

VULNERABILITY DETAILS From /WebKit/Source/core/dom/ContainerNode.cpp: void ContainerNode::parserInsertBeforePassRefPtrWillBeRawPtr newChild, Node& nextChild ... while RefPtrWillBeRawPtr parent = newChild-parentNode parent-parserRemoveChildnewChild; if document != newChild-document document...

7.5CVSS9.2AI score0.02103EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/10/26 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-2770-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.2AI score0.06974EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/10/26 12:0 a.m.43 views

openSUSE Security Update : Chromium (openSUSE-2015-679)

Chromium was update do the stable release 46.0.2490.71 to fix security issues. The following vulnerabilities were fixed : - CVE-2015-6755: Cross-origin bypass in Blink - CVE-2015-6756: Use-after-free in PDFium - CVE-2015-6757: Use-after-free in ServiceWorker - CVE-2015-6758: Bad-cast in PDFium -...

9.8CVSS8.1AI score0.06974EPSS
Exploits2References12
securityvulns
securityvulns
added 2015/10/25 12:0 a.m.102 views

[SECURITY] [DSA 3376-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3376-1 [email protected] https://www.debian.org/security/ Michael Gilbert October 20, 2015 https://www.debian.org/security/faq -...

7.5CVSS0.7AI score0.06974EPSS
Exploits4
OpenVAS
OpenVAS
added 2015/10/21 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-2770-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.2AI score0.06974EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2015/10/20 12:0 a.m.38 views

Debian Security Advisory DSA 3376-1 (chromium-browser - security update)

Several vulnerabilities have been discovered in the chromium web browser. CVE-2015-1303 Mariusz Mlynski discovered a way to bypass the Same Origin Policy in the DOM implementation. CVE-2015-1304 Mariusz Mlynski discovered a way to bypass the Same Origin Policy in the v8 javascript library...

7.5CVSS0.6AI score0.06974EPSS
Exploits4References1
RedHat Linux
RedHat Linux
added 2015/10/15 9:9 p.m.38 views

Important: Red Hat Security Advisory: chromium-browser security update

Updated chromium-browser packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severit...

7.5CVSS7.1AI score0.06974EPSS
Exploits2References11
CVE
CVE
added 2015/10/15 10:0 a.m.116 views

CVE-2015-6755

CVE-2015-6755 affects Blink (ContainerNode::parserInsertBefore in core/dom/ContainerNode.cpp) used by Google Chrome prior to 46.0.2490.71. The issue allows bypassing the Same Origin Policy via crafted JavaScript that triggers a DOM tree insertion even when a parent node no longer contains a child...

7.5CVSS8.8AI score0.02103EPSS
Exploits1References10Affected Software1
Debian CVE
Debian CVE
added 2015/10/15 10:0 a.m.23 views

CVE-2015-6755

Removed by vendor...

7.5CVSS9.4AI score0.02103EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2015/10/15 12:0 a.m.28 views

CVE-2015-6755

The ContainerNode::parserInsertBefore function in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 46.0.2490.71, proceeds with a DOM tree insertion in certain cases where a parent node no longer contains a child node, which allows remote attackers to bypass the Same Origin...

7.5CVSS7.2AI score0.02103EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2015/10/14 12:0 a.m.44 views

FreeBSD : chromium -- multiple vulnerabilities (8301c04d-71df-11e5-9fcb-00262d5ed8ee)

Google Chrome Releases reports : 24 security fixes in this release, including : - 519558 High CVE-2015-6755: Cross-origin bypass in Blink. Credit to Mariusz Mlynski. - 507316 High CVE-2015-6756: Use-after-free in PDFium. Credit to anonymous. - 529520 High CVE-2015-6757: Use-after-free in...

7.5CVSS8.2AI score0.06974EPSS
Exploits2References11
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2015/10/13 12:0 a.m.47 views

Stable Channel Update

The Chrome team is delighted to announce the promotion of Chrome 46 to the stable channel for Windows, Mac and Linux. Chrome 46.0.2490.71 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new...

9.8CVSS9.8AI score0.10238EPSS
Exploits2Affected Software1
Rows per page
Query Builder