DSA-3594-1 chromium-browser -- chromium-browserID: oval:org.secpod.oval:def:602525 | Date: (C)2016-06-07 (M)2023-12-20 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in the chromium web browser. CVE-2016-1696 A cross-origin bypass was found in the bindings to extensions. CVE-2016-1697 Mariusz Mlynski discovered a cross-origin bypass in Blink/Webkit. CVE-2016-1698 Rob Wu discovered an information leak. CVE-2016-1699 Gregory Panakkal discovered an issue in the Developer Tools feature. CVE-2016-1700 Rob Wu discovered a use-after-free issue in extensions. CVE-2016-1701 Rob Wu discovered a use-after-free issue in the autofill feature. CVE-2016-1702 cloudfuzzer discovered an out-of-bounds read issue in the skia library.