2 matches found
Google Chrome Blink Same-Origin Policy Bypass Vulnerability (CNVD-2016-05520)
Blink is the United States Google Google Inc. and Norway Opens Opera Software company jointly developed a set of browser layout engine rendering engine. A same-origin policy bypass vulnerability exists in the 'ChromeClientImpl::createWindow' method in the WebKit/Source/web/ChromeClientImpl.cpp fi...
CVE-2010-4577
CVE-2010-4577 affects WebKit/WebKitGTK+ in the CSSParser::parseFontFaceSrc path, enabling an out-of-bounds read and denial of service via a crafted local font. Affected products include WebKit-based browsers (e.g., Google Chrome before 8.0.552.224; webkitgtk before 1.2.6). Remediation noted acros...