6 matches found
SUSE CVE-2015-6769
The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing...
Chrome Universal XSS via the unload_event module (CVE-2015-6769)
VULNERABILITY DETAILS From /WebKit/Source/core/loader/DocumentLoader.cpp: PassRefPtrWillBeRawPtr DocumentLoader::createWriterForconst Document ownerDocument, const DocumentInit& init, ... LocalFrame frame = init.frame; ASSERT!frame-document || !frame-document-isActive; ASSERTframe-tree.childCount...
Mageia: Security Advisory (MGASA-2015-0467)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-6769
The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing...
CVE-2015-6769
CVE-2015-6769 affects Google Chrome/Chromium before 47.0.2526.73. The issue is a Same Origin Policy bypass in the core by exploiting a delay in window proxy clearing in WebKit’s WindowProxy.cpp, as reported in multiple sources (including Debian’s DSA-3415-1 and Chrome’s 47 stable release). Impact...
RHEL 6 : chromium-browser (RHSA-2015:2545)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2015:2545 advisory. Chromium is an open-source web browser, powered by WebKit Blink. Several flaws were found in the processing of malformed web content. A web...