Ubuntu 14.04 LTS / 16.04 LTS : Oxide vulnerabilities (USN-2960-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2960-1 advisory. An out of bounds write was discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potential...

USN-2960-1: Oxide vulnerabilities

An out of bounds write was discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code. CVE-2016-1660 It was discovered that Blink assumes that a frame...

Race condition

Race condition in the ResourceDispatcherHostImpl::BeginRequest function in content/browser/loader/resourcedispatcherhostimpl.cc in Google Chrome before 50.0.2661.102 allows remote attackers to make arbitrary HTTP requests by leveraging access to a renderer process and reusing a request ID...

CVE-2016-1670

Removed by vendor...

CVE-2016-1670

CVE-2016-1670 is a race-condition flaw in Google Chrome (Chromium core) prior to 50.0.2661.102. The issue affects ResourceDispatcherHostImpl::BeginRequest in content/browser/loader/resource_dispatcher_host_impl.cc, where a renderer process could cause the loader to reuse request IDs, enabling a r...