4 matches found
chromium-browser: privilege escalation in service workers
The OriginCanAccessServiceWorkers function in content/browser/serviceworker/serviceworkerdispatcherhost.cc in Google Chrome before 40.0.2214.111 on Windows, OS X, and Linux and before 40.0.2214.109 on Android does not properly restrict the URI scheme during a ServiceWorker registration, which...
CVE-2015-1211
Removed by vendor...
CVE-2015-1211
The OriginCanAccessServiceWorkers function in content/browser/serviceworker/serviceworkerdispatcherhost.cc in Google Chrome before 40.0.2214.111 on Windows, OS X, and Linux and before 40.0.2214.109 on Android does not properly restrict the URI scheme during a ServiceWorker registration, which...
CVE-2015-1211
CVE-2015-1211 affects Google Chrome prior to 40.0.2214.111 on Windows/macOS/Linux (and prior to 40.0.2214.109 on Android). The OriginCanAccessServiceWorkers function in content/browser/service_worker/service_worker_dispatcher_host.cc did not properly restrict the URI scheme during ServiceWorker r...