CVE search results

421 – 430 of 881 results

Detailed view

Sort by:

CVE-2016-1586

Medium priority

Fixed

A malicious webview could install long-lived unload handlers that re-use an incognito BrowserContext that is queued for destruction in versions of Oxide before 1.18.3.

1 affected package

oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	—

CVE-2016-5194

Medium priority

Some fixes available 8 of 9

Unspecified vulnerabilities in Google Chrome before 54.0.2840.59.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2016-5192

Medium priority

Some fixes available 8 of 9

Blink in Google Chrome prior to 54.0.2840.59 for Windows missed a CORS check on redirect in TextTrackLoader, which allowed a remote attacker to bypass cross-origin restrictions via crafted HTML pages.

2 affected packages

oxide-qt, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	—
chromium-browser	—	—	—	—

CVE-2016-5189

Medium priority

Some fixes available 8 of 9

Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android permitted navigation to blob URLs with non-canonical origins, which allowed a remote attacker to spoof the contents of the Omnibox (URL bar)...

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2016-5188

Medium priority

Some fixes available 8 of 9

Multiple issues in Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux allow a remote attacker to spoof various parts of browser UI via crafted HTML pages.

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2016-5187

Medium priority

Some fixes available 3 of 4

Google Chrome prior to 54.0.2840.85 for Android incorrectly handled rapid transition into and out of full screen mode, which allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via crafted HTML pages.

2 affected packages

oxide-qt, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	—
chromium-browser	—	—	—	—

CVE-2016-5186

Medium priority

Some fixes available 8 of 9

Devtools in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled objects after a tab crash, which allowed a remote attacker to perform an out of bounds memory read via...

2 affected packages

oxide-qt, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	—
chromium-browser	—	—	—	—

CVE-2016-5185

Medium priority

Some fixes available 8 of 9

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal(), which allowed a remote attacker to perform an out of...

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2016-5182

Medium priority

Some fixes available 8 of 9

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android had insufficient validation in bitmap handling, which allowed a remote attacker to potentially exploit heap corruption via crafted...

2 affected packages

chromium-browser, oxide-qt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
chromium-browser	—	—	—	—
oxide-qt	—	—	—	—

CVE-2016-5181

Medium priority

Some fixes available 8 of 9

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android permitted execution of v8 microtasks while the DOM was in an inconsistent state, which allowed a remote attacker to...

2 affected packages

oxide-qt, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
oxide-qt	—	—	—	—
chromium-browser	—	—	—	—

Export to JSON

Results by page:

Search CVE reports