CVE search results

341 – 350 of 881 results

Detailed view

Sort by:

CVE-2017-5036

Medium priority

Some fixes available 4 of 5

A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to have an unspecified impact via a crafted PDF file.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2017-5034

Medium priority

Some fixes available 4 of 5

A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for Linux and Windows allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2017-5032

Medium priority

Some fixes available 4 of 5

PDFium in Google Chrome prior to 57.0.2987.98 for Windows could be made to increment off the end of a buffer, which allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

2 affected packages

oxide-qt, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	—
chromium-browser	—	—	—	—

CVE-2016-5168

Medium priority

Ignored

Skia, as used in Google Chrome before 50.0.2661.94, allows remote attackers to bypass the Same Origin Policy and obtain sensitive information.

2 affected packages

oxide-qt, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	Not in release
chromium-browser	—	—	—	Not affected

CVE-2013-6662

Medium priority

Ignored

Google Chrome caches TLS sessions before certificate validation occurs.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	Not affected
oxide-qt	—	—	—	Not in release

CVE-2013-6648

Medium priority

Ignored

SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2013-6647

Negligible priority

Ignored

A use-after-free in AnimationController::endAnimationUpdate in Google Chrome.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	Not affected
oxide-qt	—	—	—	Not in release

CVE-2017-5046

Medium priority

Some fixes available 8 of 9

V8 in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android had insufficient policy enforcement, which allowed a remote attacker to spoof the location object via a crafted HTML page, related...

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2017-5045

Medium priority

Some fixes available 8 of 9

XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a...

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2017-5044

Medium priority

Some fixes available 8 of 9

Heap buffer overflow in filter processing in Skia in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

Export to JSON

Results by page:

Search CVE reports