10 matches found
EUVD-2016-2789
Malware in sbrugna...
openSUSE Security Update : Chromium (openSUSE-2016-682)
Chromium was updated to 51.0.2704.79 to fix the following vulnerabilities : - CVE-2016-1696: Cross-origin bypass in Extension bindings - CVE-2016-1697: Cross-origin bypass in Blink - CVE-2016-1698: Information leak in Extension bindings - CVE-2016-1699: Parameter sanitization failure in DevTools ...
CVE-2016-1694
browser/browsingdata/browsingdataremover.cc in Google Chrome before 51.0.2704.63 deletes HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid certificate from an arbitrary recognized Certification Authority...
Design/Logic Flaw
browser/browsingdata/browsingdataremover.cc in Google Chrome before 51.0.2704.63 deletes HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid certificate from an arbitrary recognized Certification Authority...
CVE-2016-1694
browser/browsingdata/browsingdataremover.cc in Google Chrome before 51.0.2704.63 deletes HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid certificate from an arbitrary recognized Certification Authority...
CVE-2016-1694
Removed by vendor...
CVE-2016-1694
CVE-2016-1694 affects Google Chrome before 51.0.2704.63, where browser/browsing_data/browsing_data_remover.cc deletes HPKP pins during cache cleanup. This undermines certificate pinning, enabling remote attackers to spoof websites by presenting a valid certificate from any trusted CA. The public ...
Security update for Chromium (important)
Chromium was updated to 51.0.2704.63 to fix the following vulnerabilities boo981886: - CVE-2016-1672: Cross-origin bypass in extension bindings - CVE-2016-1673: Cross-origin bypass in Blink - CVE-2016-1674: Cross-origin bypass in extensions - CVE-2016-1675: Cross-origin bypass in Blink -...
Security update for Chromium (important)
Chromium was updated to 51.0.2704.63 to fix the following vulnerabilities boo981886: - CVE-2016-1672: Cross-origin bypass in extension bindings - CVE-2016-1673: Cross-origin bypass in Blink - CVE-2016-1674: Cross-origin bypass in extensions - CVE-2016-1675: Cross-origin bypass in Blink -...
CVE-2016-1694
browser/browsingdata/browsingdataremover.cc in Google Chrome before 51.0.2704.63 deletes HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid certificate from an arbitrary recognized Certification Authority...