cpe:/a:google:chrome:54.0.2840.87 CVE-2016-5201 2017-01-19T00:59:00.323-05:00 2018-01-04T21:30:58.540-05:00 4.3 NETWORK MEDIUM NONE PARTIAL NONE NONE http://nvd.nist.gov 2017-01-19T18:00:27.343-05:00 SECTRACK 1037273 BID 94196 GENTOO GLSA-201611-16 REDHAT RHSA-2016:2718 CONFIRM https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop_9.html CONFIRM https://crbug.com/660678 A leak of privateClass in the extensions API in Google Chrome prior to 54.0.2840.100 for Linux, and 54.0.2840.99 for Windows, and 54.0.2840.98 for Mac allowed a remote attacker to access privileged JavaScript code via a crafted HTML page.