HIGH7.5
Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующие политики ограничения доступа
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
Severity:
Closed issues (20)
MEDIUM6.8
Уязвимость браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:PReferences
HIGH7.5
Уязвимость браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
MEDIUM6.8
Уязвимость браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:PReferences
MEDIUM5.0
Уязвимость браузера Google Chrome, позволяющая нарушителю получить доступ к защищаемой информации
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:NReferences
HIGH7.5
Уязвимость браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
MEDIUM6.8
Уязвимость мультимедийной библиотеки FFmpeg браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:PReferences
HIGH7.5
Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующие политики ограничения доступа
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
HIGH7.5
Уязвимости браузера Google Chrome, позволяющие нарушителю вызвать отказ в обслуживании
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
HIGH7.5
Уязвимости браузера Google Chrome, позволяющие нарушителю вызвать отказ в обслуживании
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
HIGH7.5
The ContainerNode::parserInsertBefore function in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 46.0.2490.71, proceeds with a DOM tree insertion in certain cases where a parent node no longer contains a child node, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=519558
- https://security.gentoo.org/glsa/201603-09
- https://src.chromium.org/viewvc/blink?revision=200690&view=revision
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=519558
- https://security.gentoo.org/glsa/201603-09
- https://src.chromium.org/viewvc/blink?revision=200690&view=revision
MEDIUM6.8
Use-after-free vulnerability in the CPDFSDK_PageView implementation in fpdfsdk/src/fsdk_mgr.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by leveraging mishandling of a focused annotation in a PDF document.
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- https://code.google.com/p/chromium/issues/detail?id=507316
- https://codereview.chromium.org/1332653002
- https://security.gentoo.org/glsa/201603-09
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- https://code.google.com/p/chromium/issues/detail?id=507316
- https://codereview.chromium.org/1332653002
- https://security.gentoo.org/glsa/201603-09
HIGH7.5
Use-after-free vulnerability in content/browser/service_worker/embedded_worker_instance.cc in the ServiceWorker implementation in Google Chrome before 46.0.2490.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging object destruction in a callback.
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=529520
- https://codereview.chromium.org/1327723005
- https://security.gentoo.org/glsa/201603-09
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=529520
- https://codereview.chromium.org/1327723005
- https://security.gentoo.org/glsa/201603-09
MEDIUM6.8
The CPDF_Document::GetPage function in fpdfapi/fpdf_parser/fpdf_parser_document.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, does not properly perform a cast of a dictionary object, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document.
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- https://code.google.com/p/chromium/issues/detail?id=522131
- https://codereview.chromium.org/1327913002
- https://security.gentoo.org/glsa/201603-09
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- https://code.google.com/p/chromium/issues/detail?id=522131
- https://codereview.chromium.org/1327913002
- https://security.gentoo.org/glsa/201603-09
MEDIUM5.0
The shouldTreatAsUniqueOrigin function in platform/weborigin/SecurityOrigin.cpp in Blink, as used in Google Chrome before 46.0.2490.71, does not ensure that the origin of a LocalStorage resource is considered unique, which allows remote attackers to obtain sensitive information via vectors involving a blob: URL.
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:NReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=514076
- https://security.gentoo.org/glsa/201603-09
- https://src.chromium.org/viewvc/blink?revision=201022&view=revision
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=514076
- https://security.gentoo.org/glsa/201603-09
- https://src.chromium.org/viewvc/blink?revision=201022&view=revision
HIGH7.5
The Image11::map function in renderer/d3d/d3d11/Image11.cpp in libANGLE, as used in Google Chrome before 46.0.2490.71, mishandles mapping failures after device-lost events, which allows remote attackers to cause a denial of service (invalid read or write) or possibly have unspecified other impact via vectors involving a removed device.
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- https://chromium.googlesource.com/angle/angle.git/+/39939686b3731eaaf6c0b639ab64db0277c72475
- https://code.google.com/p/chromium/issues/detail?id=519642
- https://security.gentoo.org/glsa/201603-09
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- https://chromium.googlesource.com/angle/angle.git/+/39939686b3731eaaf6c0b639ab64db0277c72475
- https://code.google.com/p/chromium/issues/detail?id=519642
- https://security.gentoo.org/glsa/201603-09
MEDIUM6.8
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service (race condition and memory corruption) or possibly have unspecified other impact via a crafted WebM file.
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:PReferences
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=dabea74d0e82ea80cd344f630497cafcb3ef872c
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77073
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=447860
- https://code.google.com/p/chromium/issues/detail?id=532967
- https://codereview.chromium.org/1376913003
- https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html
- https://security.gentoo.org/glsa/201603-09
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=dabea74d0e82ea80cd344f630497cafcb3ef872c
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77073
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=447860
- https://code.google.com/p/chromium/issues/detail?id=532967
- https://codereview.chromium.org/1376913003
- https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html
- https://security.gentoo.org/glsa/201603-09
HIGH7.5
The CSSFontFaceSrcValue::fetch function in core/css/CSSFontFaceSrcValue.cpp in the Cascading Style Sheets (CSS) implementation in Blink, as used in Google Chrome before 46.0.2490.71, does not use the CORS cross-origin request algorithm when a font's URL appears to be a same-origin URL, which allows remote web servers to bypass the Same Origin Policy via a redirect.
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=512678
- https://security.gentoo.org/glsa/201603-09
- https://src.chromium.org/viewvc/blink?revision=199364&view=revision
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=512678
- https://security.gentoo.org/glsa/201603-09
- https://src.chromium.org/viewvc/blink?revision=199364&view=revision
HIGH7.5
Multiple unspecified vulnerabilities in Google Chrome before 46.0.2490.71 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://packetstormsecurity.com/files/134482/Google-Chrome-Integer-Overflow.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=512053
- https://code.google.com/p/chromium/issues/detail?id=516690
- https://code.google.com/p/chromium/issues/detail?id=522128
- https://code.google.com/p/chromium/issues/detail?id=522131
- https://code.google.com/p/chromium/issues/detail?id=525763
- https://code.google.com/p/chromium/issues/detail?id=527423
- https://code.google.com/p/chromium/issues/detail?id=528798
- https://code.google.com/p/chromium/issues/detail?id=528799
- https://code.google.com/p/chromium/issues/detail?id=529310
- https://code.google.com/p/chromium/issues/detail?id=529520
- https://code.google.com/p/chromium/issues/detail?id=529530
- https://code.google.com/p/chromium/issues/detail?id=542517
- https://security.gentoo.org/glsa/201603-09
- https://www.exploit-db.com/exploits/38763/
- http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
- http://packetstormsecurity.com/files/134482/Google-Chrome-Integer-Overflow.html
- http://rhn.redhat.com/errata/RHSA-2015-1912.html
- http://www.debian.org/security/2015/dsa-3376
- http://www.securityfocus.com/bid/77071
- http://www.securitytracker.com/id/1033816
- http://www.ubuntu.com/usn/USN-2770-1
- http://www.ubuntu.com/usn/USN-2770-2
- https://code.google.com/p/chromium/issues/detail?id=512053
- https://code.google.com/p/chromium/issues/detail?id=516690
- https://code.google.com/p/chromium/issues/detail?id=522128
- https://code.google.com/p/chromium/issues/detail?id=522131
- https://code.google.com/p/chromium/issues/detail?id=525763
- https://code.google.com/p/chromium/issues/detail?id=527423
- https://code.google.com/p/chromium/issues/detail?id=528798
- https://code.google.com/p/chromium/issues/detail?id=528799
- https://code.google.com/p/chromium/issues/detail?id=529310
- https://code.google.com/p/chromium/issues/detail?id=529520
- https://code.google.com/p/chromium/issues/detail?id=529530
- https://code.google.com/p/chromium/issues/detail?id=542517
- https://security.gentoo.org/glsa/201603-09
- https://www.exploit-db.com/exploits/38763/
HIGH7.5
Multiple unspecified vulnerabilities in Google V8 before 4.6.85.23, as used in Google Chrome before 46.0.2490.71, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
CVSS 2.0HIGH 7.5
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:P/A:PReferences