VuXML: chromium -- multiple vulnerabilities

Affected packages

chromium

48.0.2564.109

chromium-npapi

48.0.2564.109

chromium-pulse

48.0.2564.109

Details

VuXML ID	36034227-cf81-11e5-9c2b-00262d5ed8ee
Discovery	2016-02-08
Entry	2016-02-09
Modified	2016-03-08

VuXML ID

36034227-cf81-11e5-9c2b-00262d5ed8ee

Discovery

2016-02-08

Entry

2016-02-09

Modified

2016-03-08

Google Chrome Releases reports:

6 security fixes in this release, including:

[546677] High CVE-2016-1622: Same-origin bypass in Extensions. Credit to anonymous.

[577105] High CVE-2016-1623: Same-origin bypass in DOM. Credit to Mariusz Mlynski.

[509313] Medium CVE-2016-1625: Navigation bypass in Chrome Instant. Credit to Jann Horn.

[571480] Medium CVE-2016-1626: Out-of-bounds read in PDFium. Credit to anonymous, working with HP's Zero Day Initiative.

[585517] CVE-2016-1627: Various fixes from internal audits, fuzzing and other initiatives.

[source]

References

CVE Name

CVE-2016-1622

CVE Name

CVE-2016-1623

CVE Name

CVE-2016-1625

CVE Name

CVE-2016-1626

CVE Name

CVE-2016-1627

URL

http://googlechromereleases.blogspot.nl/2016/02/stable-channel-update_9.html