CVSS: 6.5EPSS: 1%CPEs: 1EXPL: 0CVE-2016-5174 – chromium-browser: popup not correctly suppressed
https://notcve.org/view.php?id=CVE-2016-5174
16 Sep 2016 — browser/ui/cocoa/browser_window_controller_private.mm in Google Chrome before 53.0.2785.113 does not process fullscreen toggle requests during a fullscreen transition, which allows remote attackers to cause a denial of service (unsuppressed popup) via a crafted web site. browser/ui/cocoa/browser_wendow_controller_private.mm en Google Chrome en versiones anteriores a 53.0.2785.113 no procesa peticiones de conmutación a pantalla completa durante una transición a pantalla completa, lo que permite a atacantes r... • http://rhn.redhat.com/errata/RHSA-2016-1905.html • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2016-5149 – chromium-browser: script injection in extensions
https://notcve.org/view.php?id=CVE-2016-5149
11 Sep 2016 — The extensions subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux relies on an IFRAME source URL to identify an associated extension, which allows remote attackers to conduct extension-bindings injection attacks by leveraging script access to a resource that initially has the about:blank URL. El subsistema de extensiones en Google Chrome en versiones anteriores a 53.0.2785.89 en Windows y SO X y en versiones anteriores a 53.0.2785.92 en Linux confía en una UR... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2016-5156 – chromium-browser: use after free in event bindings
https://notcve.org/view.php?id=CVE-2016-5156
11 Sep 2016 — extensions/renderer/event_bindings.cc in the event bindings in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux attempts to process filtered events after failure to add an event matcher, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via unknown vectors. extensions/renderer/event_bindings.cc en los vínculos de eventos en Google Chrome en versiones anteriores a 53.0.2785.89 en Windows y SO X y en vers... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2016-5159 – openjpeg: heap overflow in parsing of JPEG2000 code blocks
https://notcve.org/view.php?id=CVE-2016-5159
11 Sep 2016 — Multiple integer overflows in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during opj_aligned_malloc calls in dwt.c and t1.c. Múltiples desbordamiento de entero en OpenJPEG, tal como se utiliza en PDFium en Google Chrome en versiones anteriores a 53.0.2785.89 en Window... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2016-5152 – chromium-browser: heap overflow in pdfium
https://notcve.org/view.php?id=CVE-2016-5152
11 Sep 2016 — Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data. Desbordamiento de entero en la función opj_tcd_get_decoded_tile_size en tcd.c en OpenJPEG, tal como se utiliza en PDFium en Google Chrome en versiones anteriores a 53... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2016-5151 – chromium-browser: use after free in pdfium
https://notcve.org/view.php?id=CVE-2016-5151
11 Sep 2016 — PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux mishandles timers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted PDF document, related to fpdfsdk/javascript/JS_Object.cpp and fpdfsdk/javascript/app.cpp. PDFium en Google Chrome en versiones anteriores a 53.0.2785.89 en Windows y SO X y en versiones anteriores a 53.0.2785.92 en Linux no maneja adecuadamente los temporizadores,... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2016-5150 – chromium-browser: use after free in blink
https://notcve.org/view.php?id=CVE-2016-5150
11 Sep 2016 — WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, has an Indexed Database (aka IndexedDB) API implementation that does not properly restrict key-path evaluation, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code that leverages certain side effects. WebKit/Source/bindings/modules/v8/V8BindingForModu... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-5162 – chromium-browser: extensions web accessible resources bypass
https://notcve.org/view.php?id=CVE-2016-5162
11 Sep 2016 — The AllowCrossRendererResourceLoad function in extensions/browser/url_request_util.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use an extension's manifest.json web_accessible_resources field for restrictions on IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks, and trick users into changing extension settings, via a crafted web site, a different vulnerability than CVE-2016-5160. La función AllowCross... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-254: 7PK - Security Features •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-5155 – chromium-browser: address bar spoofing
https://notcve.org/view.php?id=CVE-2016-5155
11 Sep 2016 — Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly validate access to the initial document, which allows remote attackers to spoof the address bar via a crafted web site. Google Chrome en versiones anteriores a 53.0.2785.89 en Windows y SO X y en versiones anteriores a 53.0.2785.92 en Linux no valida apropiadamente el acceso al documento inicial, lo que permite a atacantes remotos suplantar la barra de dirección a través de un sitio web manipulado. An is... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-254: 7PK - Security Features •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2016-5154 – chromium-browser: heap overflow in pdfium
https://notcve.org/view.php?id=CVE-2016-5154
11 Sep 2016 — Multiple heap-based buffer overflows in PDFium, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JBig2 image. Múltiples desbordamientos de búfer basados en memoria dinámica en PDFium, tal como se utiliza en Google Chrome en versiones anteriores a 53.0.2785.89 en Windows y SO X y en versiones anteriores a 53.0.2785.92 en Linux, permiten a atacantes remo... • http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •