Search CVE reports


Toggle filters

31 – 40 of 355 results


CVE-2011-3889

Low priority

Some fixes available 2 of 28

Heap-based buffer overflow in the Web Audio implementation in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3888

Low priority

Some fixes available 2 of 28

Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to editing operations...

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3887

Medium priority

Some fixes available 2 of 28

Google Chrome before 15.0.874.102 does not properly handle javascript: URLs, which allows remote attackers to bypass intended access restrictions and read cookies via unspecified vectors.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3885

Low priority

Some fixes available 2 of 28

Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to stale Cascading Style Sheets (CSS) token-sequence data.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3883

Low priority

Some fixes available 2 of 28

Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to counters.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3881

Medium priority

Some fixes available 2 of 28

WebKit, as used in Google Chrome before 15.0.874.102 and Android before 4.4, allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors related to (1) the DOMWindow::clear...

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3878

Low priority

Some fixes available 2 of 28

Race condition in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to worker process initialization.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-2845

Low priority

Some fixes available 2 of 28

Google Chrome before 15.0.874.102 does not properly handle history data, which allows user-assisted remote attackers to spoof the URL bar via unspecified vectors.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3243

Medium priority

Some fixes available 12 of 38

Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5 and Safari before 5.1.1, allows remote attackers to inject arbitrary web script or HTML via vectors involving inactive DOM windows.

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages

CVE-2011-3244

Negligible priority

Some fixes available 12 of 38

WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a...

5 affected packages

chromium-browser, qt4-x11, qtwebkit-source, webkit, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed
qt4-x11 Not affected
qtwebkit-source Ignored
webkit Not in release
webkitgtk Not affected
Show less packages