Lucene search

K
ubuntucveUbuntu.comUB:CVE-2016-5127
HistoryJul 23, 2016 - 12:00 a.m.

CVE-2016-5127

2016-07-2300:00:00
ubuntu.com
ubuntu.com
9

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.6%

Use-after-free vulnerability in WebKit/Source/core/editing/VisibleUnits.cpp
in Blink, as used in Google Chrome before 52.0.2743.82, allows remote
attackers to cause a denial of service or possibly have unspecified other
impact via crafted JavaScript code involving an @import at-rule in a
Cascading Style Sheets (CSS) token sequence in conjunction with a
rel=import attribute of a LINK element.

OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchchromium-browser< 52.0.2743.116-0ubuntu0.14.04.1.1134UNKNOWN
ubuntu16.04noarchchromium-browser< 52.0.2743.116-0ubuntu0.16.04.1.1250UNKNOWN
ubuntu16.10noarchchromium-browser< 53.0.2785.143-0ubuntu1.1307UNKNOWN
ubuntu14.04noarchoxide-qt< 1.16.5-0ubuntu0.14.04.1UNKNOWN
ubuntu16.04noarchoxide-qt< 1.16.5-0ubuntu0.16.04.1UNKNOWN
ubuntu16.10noarchoxide-qt< 1.16.7-0ubuntu1UNKNOWN

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.6%

Related for UB:CVE-2016-5127