FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
9d732078-32c7-11e5-b263-00262d5ed8eechromium -- multiple vulnerabilities

Google Chrome Releases reports:

43 security fixes in this release, including:

  • [446032] High CVE-2015-1271: Heap-buffer-overflow in pdfium. Credit to cloudfuzzer.
  • [459215] High CVE-2015-1273: Heap-buffer-overflow in pdfium. Credit to makosoft.
  • [461858] High CVE-2015-1274: Settings allowed executable files to run immediately after download. Credit to andrewm.bpi.
  • [462843] High CVE-2015-1275: UXSS in Chrome for Android. Credit to WangTao(neobyte) of Baidu X-Team.
  • [472614] High CVE-2015-1276: Use-after-free in IndexedDB. Credit to Collin Payne.
  • [483981] High CVE-2015-1279: Heap-buffer-overflow in pdfium. Credit to mlafon.
  • [486947] High CVE-2015-1280: Memory corruption in skia. Credit to cloudfuzzer.
  • [487155] High CVE-2015-1281: CSP bypass. Credit to Masato Kinugawa.
  • [487928] High CVE-2015-1282: Use-after-free in pdfium. Credit to Chamal de Silva.
  • [492052] High CVE-2015-1283: Heap-buffer-overflow in expat. Credit to sidhpurwala.huzaifa.
  • [493243] High CVE-2015-1284: Use-after-free in blink. Credit to Atte Kettunen of OUSPG.
  • [504011] High CVE-2015-1286: UXSS in blink. Credit to anonymous.
  • [505374] High CVE-2015-1290: Memory corruption in V8. Credit to Yongjun Liu of NSFOCUS Security Team.
  • [419383] Medium CVE-2015-1287: SOP bypass with CSS. Credit to filedescriptor.
  • [444573] Medium CVE-2015-1270: Uninitialized memory read in ICU. Credit to Atte Kettunen of OUSPG.
  • [451456] Medium CVE-2015-1272: Use-after-free related to unexpected GPU process termination. Credit to Chamal de Silva.
  • [479743] Medium CVE-2015-1277: Use-after-free in accessibility. Credit to SkyLined.
  • [482380] Medium CVE-2015-1278: URL spoofing using pdf files. Credit to Chamal de Silva.
  • [498982] Medium CVE-2015-1285: Information leak in XSS auditor. Credit to gazheyes.
  • [479162] Low CVE-2015-1288: Spell checking dictionaries fetched over HTTP. Credit to mike@michaelruddy.com.
  • [512110] CVE-2015-1289: Various fixes from internal audits, fuzzing and other initiatives.

Discovery 2015-07-21
Entry 2015-07-25
chromium
< 44.0.2403.89

chromium-npapi
< 44.0.2403.89

chromium-pulse
< 44.0.2403.89

CVE-2015-1270
CVE-2015-1271
CVE-2015-1272
CVE-2015-1273
CVE-2015-1274
CVE-2015-1275
CVE-2015-1276
CVE-2015-1277
CVE-2015-1278
CVE-2015-1279
CVE-2015-1280
CVE-2015-1281
CVE-2015-1282
CVE-2015-1283
CVE-2015-1284
CVE-2015-1285
CVE-2015-1286
CVE-2015-1287
CVE-2015-1288
CVE-2015-1289
CVE-2015-1290
http://googlechromereleases.blogspot.nl/