Search CVE reports

Toggle filters

2101 – 2110 of 3719 results

CVE-2017-15417

Medium priority

Some fixes available 6 of 9

Inappropriate implementation in Skia canvas composite operations in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15416

Medium priority

Some fixes available 6 of 9

Heap buffer overflow in Blob API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka a Blink out-of-bounds read.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15415

Medium priority

Some fixes available 6 of 9

Incorrect serialization in IPC in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak the value of a pointer via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15413

Medium priority

Some fixes available 6 of 9

Type confusion in WebAssembly in V8 in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15411

Medium priority

Some fixes available 6 of 9

Use after free in PDFium in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15410

Medium priority

Some fixes available 6 of 9

Use after free in PDFium in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15409

Medium priority

Some fixes available 6 of 9

Heap buffer overflow in Skia in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-15408

Medium priority

Some fixes available 6 of 9

Heap buffer overflow in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file that is mishandled by PDFium.

2 affected packages

oxide-qt, chromium-browser

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
oxide-qt Not in release
chromium-browser Fixed
Show less packages

CVE-2017-15407

Medium priority

Some fixes available 6 of 9

Out-of-bounds Write in the QUIC networking stack in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to gain code execution via a malicious server.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2018-1999014

Medium priority
Needs evaluation

FFmpeg before commit bab0716c7f4793ec42e05a5aa7e80d82a0dd4e75 contains an out of array access vulnerability in MXF format demuxer that can result in DoS. This attack appear to be exploitable via specially crafted MXF file which...

7 affected packages

ffmpeg, qtwebengine-opensource-src, gst-libav1.0, kino, vlc...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ffmpeg Not affected Not affected Not affected Not affected
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gst-libav1.0 Needs evaluation Needs evaluation Needs evaluation Needs evaluation
kino Not in release Needs evaluation Needs evaluation Needs evaluation
vlc Not affected Not affected Not affected Not affected
chromium-browser Ignored Ignored Not in release Ignored
oxide-qt Not in release Not in release Not in release Not in release
Show all 7 packages Show less packages
  1. Previous page
  2. 209
  3. 210
  4. 211
  5. 212
  6. 213
  7. Next page
Export to JSON