The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrectly
relies on GetOrigin method calls for origin comparisons, which allows
remote attackers to bypass the Same Origin Policy and obtain sensitive
information via a crafted extension.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 14.04 | noarch | chromium-browser | < 50.0.2661.102-0ubuntu0.14.04.1.1117 | UNKNOWN |
ubuntu | 15.10 | noarch | chromium-browser | < 50.0.2661.102-0ubuntu0.15.10.1.1227 | UNKNOWN |
ubuntu | 16.04 | noarch | chromium-browser | < 50.0.2661.102-0ubuntu0.16.04.1.1237 | UNKNOWN |