Lucene search
Ubuntu.comUB:CVE-2015-1285HistoryJul 22, 2015 - 12:00 a.m.
CVE-2015-1285
2015-07-2200:00:00
ubuntu.com
ubuntu.com
8
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
72.4%
The XSSAuditor::canonicalize function in core/html/parser/XSSAuditor.cpp in
the XSS auditor in Blink, as used in Google Chrome before 44.0.2403.89,
does not properly choose a truncation point, which makes it easier for
remote attackers to obtain sensitive information via an unspecified
linear-time attack.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 14.04 | noarch | chromium-browser | < 44.0.2403.89-0ubuntu0.14.04.1.1095 | UNKNOWN |
| ubuntu | 15.04 | noarch | chromium-browser | < 44.0.2403.89-0ubuntu0.15.04.1.1177 | UNKNOWN |
| ubuntu | 15.10 | noarch | chromium-browser | < 44.0.2403.89-0ubuntu1.1195 | UNKNOWN |
| ubuntu | 14.04 | noarch | oxide-qt | < 1.8.4-0ubuntu0.14.04.1 | UNKNOWN |
| ubuntu | 15.04 | noarch | oxide-qt | < 1.8.4-0ubuntu0.15.04.1 | UNKNOWN |
| ubuntu | 15.10 | noarch | oxide-qt | < 1.8.4-0ubuntu1 | UNKNOWN |
Related
debiancve
debiancve
CVE-2015-1285
2015-07-23 00:59:00
prion
prion
Information disclosure
2015-07-23 00:59:00
cve
cve
CVE-2015-1285
2015-07-23 00:59:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-08-04 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2677-1)
2015-08-05 00:00:00
Google Chrome < 44.0.2403.89 Multiple Vulnerabilities
2015-07-22 00:00:00
Google Chrome < 44.0.2403.89 Multiple Vulnerabilities (Mac OS X)
2015-07-22 00:00:00
openvas
openvas
Ubuntu Update for oxide-qt USN-2677-1
2015-08-05 00:00:00
Mageia Linux Local Check: mgasa-2015-0288
2015-10-15 00:00:00
Google Chrome Multiple Vulnerabilities-01 July15 (Linux)
2015-07-23 00:00:00
mageia
mageia
Updated chromium-browser package fixes security vulnerabilities
2015-07-27 20:45:18
threatpost
threatpost
Google Patches 43 Bugs in Chrome
2015-07-22 09:23:06
redhat
redhat
(RHSA-2015:1499) Important: chromium-browser security update
2015-07-27 00:00:00
archlinux
archlinux
chromium: multiple issues
2015-07-23 00:00:00
kaspersky
kaspersky
KLA10636 Multiple vulnerabilities in Google Chrome
2015-07-21 00:00:00
suse
suse
Security update for Chromium (important)
2015-07-26 21:08:24
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-07-21 00:00:00
chrome
chrome
Stable Channel Update
2015-07-21 00:00:00
securityvulns
securityvulns
Google Chrome / Chromium multiple security vulnerabilities
2015-07-26 00:00:00
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-26 00:00:00
debian
debian
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
osv
osv
chromium-browser - security update
2015-07-23 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
72.4%
Related for UB:CVE-2015-1285