8 matches found
CVE-2017-5087
CVE-2017-5087 is a use-after-free in Blink in Google Chrome that enables a remote attacker to perform an out-of-bounds memory read via a crafted HTML page (IndexedDB sandbox escape). Affected Chrome versions: prior to 59.0.3071.104 on Mac/Windows/Linux and 59.0.3071.117 on Android. Impact describ...
Debian Security Advisory DSA 3926-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5087 Ned Williamson discovered a way to escape the sandbox. CVE-2017-5088 Xiling Gong discovered an out-of-bounds read issue in the v8 javascript library. CVE-2017-5089 Michal Bentkowski discovered a spoofing issue...
Debian: Security Advisory (DSA-3926-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome < 59.0.3071.104 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 59.0.3071.104. It is, therefore, affected by multiple vulnerabilities as referenced in the 201706stable-channel-update-for-desktop15 advisory. - Insufficient validation of untrusted input in V8 in Google Chrome prior to...
Google Chrome < 59.0.3071.104 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 59.0.3071.104. It is, therefore, affected by multiple vulnerabilities as referenced in the 201706stable-channel-update-for-desktop15 advisory. - Insufficient validation of untrusted input in V8 in Google Chrome prior to...
Important: Red Hat Security Advisory: chromium-browser security update
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
chromium -- multiple vulnerabilities
Google Chrome releases reports: 5 security fixes in this release, including: 725032 High CVE-2017-5087: Sandbox Escape in IndexedDB. Reported by Ned Williamson on 2017-05-22 729991 High CVE-2017-5088: Out of bounds read in V8. Reported by Xiling Gong of Tencent Security Platform Department on...
Stable Channel Update for Desktop
The stable channel has been updated to 59.0.3071.104 for Windows, Mac, and Linux. This will roll out over the coming days/weeks. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictio...