228 matches found
Google Chrome < 64.0.3282.140 Vulnerability
The version of Google Chrome installed on the remote macOS host is prior to 64.0.3282.140. It is, therefore, affected by a vulnerability as referenced in the 201802stable-channel-update-for-desktop advisory. Note that Nessus has not tested for this issue but has instead relied only on the...
Important: Red Hat Security Advisory: chromium-browser security update
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
Debian DSA-4024-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium browser. - CVE-2017-15398 Ned Williamson discovered a stack overflow issue. - CVE-2017-15399 Zhao Qixun discovered a use-after-free issue in the v8 JavaScript library. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
[SECURITY] [DSA 4024-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4024-1 [email protected] https://www.debian.org/security/ Michael Gilbert November 08, 2017 https://www.debian.org/security/faq -...
Debian DSA-4020-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium web browser. In addition, this message serves as an annoucment that security support for chromium in the oldstable release jessie, Debian 8, is now discontinued. Debian 8 chromium users that desire continued security updates are strongl...
Browser security beyond sandboxing
Security is now a strong differentiator in picking the right browser. We all use browsers for day-to-day activities like staying in touch with loved ones, but also for editing sensitive private and corporate documents, and even managing our financial assets. A single compromise through a web...
Debian DSA-3985-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2017-5111 Luat Nguyen discovered a use-after-free issue in the pdfium library. - CVE-2017-5112 Tobias Klein discovered a buffer overflow issue in the webgl library. - CVE-2017-5113 A buffer overflow issue was discover...
Google Chrome < 61.0.3163.100 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 61.0.3163.100. It is, therefore, affected by multiple vulnerabilities as referenced in the 201709stable-channel-update-for-desktop21 advisory. - Inappropriate use of table size handling in V8 in Google Chrome prior to...
Debian Security Advisory DSA 3926-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5087 Ned Williamson discovered a way to escape the sandbox. CVE-2017-5088 Xiling Gong discovered an out-of-bounds read issue in the v8 javascript library. CVE-2017-5089 Michal Bentkowski discovered a spoofing issue...
Google Chrome 60.0.3080.5 V8 JavaScript Engine Out-Of-Bounds Write
// Source: https://halbecaf.com/2017/05/24/exploiting-a-v8-oob-write/ // // v8 exploit for https://crbug.com/716044 var oobrw = null; var leak = null; var arbrw = null; var code = function return 1; code; class BuggyArray extends Array constructorlen super1; oobrw = new Array1.1, 1.1; leak = new...
Google Chrome 60.0.3080.5 V8 JavaScript Engine - Out-of-Bounds Write
// Source: https://halbecaf.com/2017/05/24/exploiting-a-v8-oob-write/ // // v8 exploit for https://crbug.com/716044 var oobrw = null; var leak = null; var arbrw = null; var code = function return 1; code; class BuggyArray extends Array constructorlen super1; oobrw = new Array1.1, 1.1; leak = new...
Debian Security Advisory DSA 3810-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5029 Holger Fuhrmannek discovered an integer overflow issue in the libxslt library. CVE-2017-5030 Brendon Tiszka discovered a memory corruption issue in the v8 javascript library. CVE-2017-5031 Looben Yang discover...
Debian Security Advisory DSA 3776-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5006 Mariusz Mlynski discovered a cross-site scripting issue. CVE-2017-5007 Mariusz Mlynski discovered another cross-site scripting issue. CVE-2017-5008 Mariusz Mlynski discovered a third cross-site scripting issue...
Debian DSA-3776-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2017-5006 Mariusz Mlynski discovered a cross-site scripting issue. - CVE-2017-5007 Mariusz Mlynski discovered another cross-site scripting issue. - CVE-2017-5008 Mariusz Mlynski discovered a third cross-site scripting...
Debian Security Advisory DSA 3731-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-5181 A cross-site scripting issue was discovered. CVE-2016-5182 Giwan Go discovered a heap overflow issue. CVE-2016-5183 A use-after-free issue was discovered in the pdfium library. CVE-2016-5184 Another...
[SECURITY] [DSA 3683-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3683-1 [email protected] https://www.debian.org/security/ Michael Gilbert October 02, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3683-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3683-1 [email protected] https://www.debian.org/security/ Michael Gilbert October 02, 2016 https://www.debian.org/security/faq -...
Debian DSA-3667-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2016-5170 A use-after-free issue was discovered in Blink/Webkit. - CVE-2016-5171 Another use-after-free issue was discovered in Blink/Webkit. - CVE-2016-5172 Choongwoo Han discovered an information leak in the v8...
Debian Security Advisory DSA 3637-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-1704 The chrome development team found and fixed various issues during internal auditing. CVE-2016-1705 The chrome development team found and fixed various issues during internal auditing. CVE-2016-1706 Pinkie Pie...
Debian DSA-3637-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2016-1704 The chrome development team found and fixed various issues during internal auditing. - CVE-2016-1705 The chrome development team found and fixed various issues during internal auditing. - CVE-2016-1706 Pinki...