1893 matches found
chromium-browser: local file disclosure in devtools
Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted HTML page...
CVE-2016-5212
Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted HTML page...
UBUNTU-CVE-2016-5212
Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted HTML page...
CVE-2016-5212
Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted HTML page...
Google Chrome < 55.0.2883.75 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 55.0.2883.75. It is, therefore, affected by multiple vulnerabilities as referenced in the 201612stable-channel-update-for-desktop advisory. - Multiple unspecified vulnerabilities in Google Chrome before 55.0.2883.75...
Security update for Chromium (important)
Chromium was updated to 54.0.2840.59 to fix security issues and bugs. The following security issues are fixed bnc1004465: - CVE-2016-5181: Universal XSS in Blink - CVE-2016-5182: Heap overflow in Blink - CVE-2016-5183: Use after free in PDFium - CVE-2016-5184: Use after free in PDFium -...
OPENSUSE-SU-2016:2597-1 Security update for Chromium
Chromium was updated to 54.0.2840.59 to fix security issues and bugs. The following security issues are fixed bnc1004465: - CVE-2016-5181: Universal XSS in Blink - CVE-2016-5182: Heap overflow in Blink - CVE-2016-5183: Use after free in PDFium - CVE-2016-5184: Use after free in PDFium -...
Google Chrome < 54.0.2840.59 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 54.0.2840.59. It is, therefore, affected by multiple vulnerabilities as referenced in the 201610stable-channel-update-for-desktop advisory. - Unspecified vulnerabilities in Google Chrome before 54.0.2840.59. CVE-2016-5194...
Google Chrome DevTools Boundary Read Vulnerability
Google Chrome is a popular web browser. A boundary read vulnerability exists in Google Chrome DevTools. An attacker can exploit the vulnerability to obtain sensitive information...
chromium-browser: out of bounds read in devtools
Devtools in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled objects after a tab crash, which allowed a remote attacker to perform an out of bounds memory read via crafted PDF files...
Google Chrome < 54.0.2840.59 Multiple Vulnerabilities
Binary data 9687.pasl...
CVE-2016-5186
Devtools in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled objects after a tab crash, which allowed a remote attacker to perform an out of bounds memory read via crafted PDF files...
CVE-2016-5186
Devtools in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled objects after a tab crash, which allowed a remote attacker to perform an out of bounds memory read via crafted PDF files...
Ubuntu 14.04 LTS / 16.04 LTS : Oxide vulnerabilities (USN-3058-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3058-1 advisory. An issue was discovered in Blink involving the provisional URL for an initially empty document. An attacker could potentially exploit this to...
openSUSE Security Update : Chromium (openSUSE-2016-1080)
Chromium was updated to 53.0.2785.101 to fix a number of security issues and bugs. The following vulnerabilities were fixed: boo996648 - CVE-2016-5147: Universal XSS in Blink. - CVE-2016-5148: Universal XSS in Blink. - CVE-2016-5149: Script injection in extensions. - CVE-2016-5150: Use after free...
USN-3058-1 oxide-qt vulnerabilities
An issue was discovered in Blink involving the provisional URL for an initially empty document. An attacker could potentially exploit this to spoof the currently displayed URL. CVE-2016-5141 A use-after-free was discovered in the WebCrypto implementation in Blink. If a user were tricked in to...
chromium-browser: universal xss using devtools
Cross-site scripting XSS vulnerability in WebKit/Source/platform/v8inspector/V8Debugger.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML into the Developer Tools aka...
chromium-browser: script injection in devtools
Cross-site scripting XSS vulnerability in the Developer Tools aka DevTools subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux allows remote attackers to inject arbitrary web script or HTML via the settings parameter in a...
CVE-2016-5165
Cross-site scripting XSS vulnerability in the Developer Tools aka DevTools subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux allows remote attackers to inject arbitrary web script or HTML via the settings parameter in a...
CVE-2016-5165
Cross-site scripting XSS vulnerability in the Developer Tools aka DevTools subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux allows remote attackers to inject arbitrary web script or HTML via the settings parameter in a...