|
|
Subscribe / Log in / New account

chromium: multiple vulnerabilities

Package(s):chromium nodejs v8 CVE #(s):CVE-2016-1667 CVE-2016-1668 CVE-2016-1669 CVE-2016-1670
Created:May 13, 2016 Updated:September 22, 2016
Description:

From the Arch Linux advisory:

CVE-2016-1667: Same origin bypass in DOM. Credit to Mariusz Mlynski.

CVE-2016-1668: Same origin bypass in Blink V8 bindings. Credit to Mariusz Mlynski.

CVE-2016-1669: Buffer overflow in V8. Credit to Choongwoo Han.

CVE-2016-1670: Race condition in loader. Credit to anonymous. Note that these vulnerabilities affect the V8 engine used in other packages as well.

Alerts:
openSUSE openSUSE-SU-2016:2496-1 nodejs 2016-10-11
Mageia MGASA-2016-0307 nodejs 2016-09-21
Fedora FEDORA-2016-6fd3131c03 v8 2016-08-09
Fedora FEDORA-2016-e720bc8451 v8 2016-08-08
openSUSE openSUSE-SU-2016:1834-1 nodejs 2016-07-20
openSUSE openSUSE-SU-2016:1655-1 Chromium 2016-06-22
Debian DSA-3590-1 chromium-browser 2016-06-01
Ubuntu USN-2960-1 oxide-qt 2016-05-19
Mageia MGASA-2016-0183 chromium-browser-stable 2016-05-18
openSUSE openSUSE-SU-2016:1319-1 Chromium 2016-05-17
Gentoo 201605-02 chromium 2016-05-17
openSUSE openSUSE-SU-2016:1304-1 Chromium 2016-05-16
Red Hat RHSA-2016:1080-01 chromium-browser 2016-05-13
Arch Linux ASA-201605-15 chromium 2016-05-13
Red Hat RHSA-2017:0002-01 rh-nodejs4-nodejs and rh-nodejs4-http-parser 2017-01-02
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds