14 matches found
CVE-2016-5199
An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2016-5199
CVE-2016-5199 is a heap corruption issue in the FFmpeg MP4 decoder used by Chromium/Chrome. The off-by-one error can lead to a 0-size allocation and heap-pointer corruption via a crafted video file, potentially allowing remote code execution. Affected software includes Chrome as shipped on Mac, W...
Fedora 24 : chromium (2016-e0e1cb2b2b)
Update to Chromium 55. Security fix for CVE-2016-5199, CVE-2016-5200, CVE-2016-5201, CVE-2016-5202, CVE-2016-9651, CVE-2016-5208, CVE-2016-5207, CVE-2016-5206, CVE-2016-5205, CVE-2016-5204, CVE-2016-5209, CVE-2016-5203, CVE-2016-5210, CVE-2016-5212, CVE-2016-5211, CVE-2016-5213, CVE-2016-5214,...
Fedora 25 : chromium (2016-a815b7bf5d)
Update to Chromium 55. Security fix for CVE-2016-5199, CVE-2016-5200, CVE-2016-5201, CVE-2016-5202, CVE-2016-9651, CVE-2016-5208, CVE-2016-5207, CVE-2016-5206, CVE-2016-5205, CVE-2016-5204, CVE-2016-5209, CVE-2016-5203, CVE-2016-5210, CVE-2016-5212, CVE-2016-5211, CVE-2016-5213, CVE-2016-5214,...
Ubuntu: Security Advisory (USN-3133-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-3133-1: Oxide vulnerabilities
Multiple security vulnerabilities were discovered in Chromium. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to obtain sensitive information, cause a denial of service via application crash, or execute arbitrary code. CVE-2016-5198,...
openSUSE Security Update : ffmpeg (openSUSE-2016-1365)
This update to ffmpeg 3.2 fixes the following issues : - CVE-2016-5199: Heap corruption in FFmpeg boo1009892 FFmpeg was updated to version 3.2, incorporating the following upstream improvements : - SDL2 output device and ffplay support - SDL1 output device and SDL1 support removed - New: libopenm...
Security update for Chromium (important)
This update to Chromium 54.0.2840.100 fixes the following vulnerabilities: - CVE-2016-5199: Heap corruption in FFmpeg boo1009892 - CVE-2016-5200: out of bounds memory access in v8 boo1009893 - CVE-2016-5201: info leak in extensions boo1009894 - CVE-2016-5202: various fixes from internal audits...
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:2793-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 6 : chromium-browser (RHSA-2016:2718)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2016:2718 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 54.0.2840.100. Security Fixes:...
openSUSE Security Update : Chromium (openSUSE-2016-1292)
This update to Chromium 54.0.2840.100 fixes the following vulnerabilities : - CVE-2016-5199: Heap corruption in FFmpeg boo1009892 - CVE-2016-5200: out of bounds memory access in v8 boo1009893 - CVE-2016-5201: info leak in extensions boo1009894 - CVE-2016-5202: various fixes from internal audits...
CVE-2016-5199
An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
Google Chrome < 54.0.2840.99 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 54.0.2840.99. It is, therefore, affected by multiple vulnerabilities as referenced in the 201611stable-channel-update-for-desktop9 advisory. - browser/extensions/api/dial/dialregistry.cc in Google Chrome before...
Stable Channel Update for Desktop
The stable channel has been updated to 54.0.2840.99 for Windows, 54.0.2840.98 for Mac, and 54.0.2840.100 on Linux. This will roll out over the coming days/weeks. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fi...