Skip to content

Commit

Permalink
Updated_Google_Vulnerabilities
Browse files Browse the repository at this point in the history 
CVE-2016-5210
CVE-2016-5211
CVE-2016-5212
CVE-2016-5213
CVE-2016-9650
  • Loading branch information
@tagasulat
tagasulat committed Jan 24, 2017
1 parent faba008 commit 4e921b4
Show file tree
Hide file tree
Showing 5 changed files with 5 additions and 5 deletions.
2 changes: 1 addition & 1 deletion repository/definitions/vulnerability/oval_org.cisecurity_def_1556.xml
View file
Expand Up @@ -17,7 +17,7 @@
<product>Google Chrome</product>
</affected>
<reference ref_id="CVE-2016-5212" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5212" source="CVE" />
<description>Local file disclosure in DevTools.</description>
<description>Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android insufficiently sanitized DevTools URLs, which allowed a remote attacker to read local files via a crafted HTML page.</description>
<oval_repository>
<dates>
<submitted date="2016-12-09T00:00:00+08:00">
Expand Down
2 changes: 1 addition & 1 deletion repository/definitions/vulnerability/oval_org.cisecurity_def_1559.xml
View file
Expand Up @@ -17,7 +17,7 @@
<product>Google Chrome</product>
</affected>
<reference ref_id="CVE-2016-9650" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9650" source="CVE" />
<description>CSP Referrer disclosure.</description>
<description>Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled iframes, which allowed a remote attacker to bypass a no-referrer policy via a crafted HTML page.</description>
<oval_repository>
<dates>
<submitted date="2016-12-09T00:00:00+08:00">
Expand Down
2 changes: 1 addition & 1 deletion repository/definitions/vulnerability/oval_org.cisecurity_def_1564.xml
View file
Expand Up @@ -17,7 +17,7 @@
<product>Google Chrome</product>
</affected>
<reference ref_id="CVE-2016-5213" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5213" source="CVE" />
<description>Use after free in V8.</description>
<description>A use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.</description>
<oval_repository>
<dates>
<submitted date="2016-12-09T00:00:00+08:00">
Expand Down
2 changes: 1 addition & 1 deletion repository/definitions/vulnerability/oval_org.cisecurity_def_1565.xml
View file
Expand Up @@ -17,7 +17,7 @@
<product>Google Chrome</product>
</affected>
<reference ref_id="CVE-2016-5210" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5210" source="CVE" />
<description>Out of bounds write in PDFium.</description>
<description>Heap buffer overflow during TIFF image parsing in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.</description>
<oval_repository>
<dates>
<submitted date="2016-12-09T00:00:00+08:00">
Expand Down
2 changes: 1 addition & 1 deletion repository/definitions/vulnerability/oval_org.cisecurity_def_1566.xml
View file
Expand Up @@ -17,7 +17,7 @@
<product>Google Chrome</product>
</affected>
<reference ref_id="CVE-2016-5211" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5211" source="CVE" />
<description>Use after free in PDFium.</description>
<description>A use after free in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.</description>
<oval_repository>
<dates>
<submitted date="2016-12-09T00:00:00+08:00">
Expand Down

0 comments on commit 4e921b4

Please sign in to comment.