vulnerability

Red Hat: CVE-2016-5204: Important: chromium-browser security update (RHSA-2016:2919)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Dec 7, 2016	Dec 9, 2016	Jan 17, 2018

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Dec 7, 2016

Added

Dec 9, 2016

Modified

Jan 17, 2018

Description

Leaking of an SVG shadow tree leading to corruption of the DOM tree in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page.

Solutions

redhat-upgrade-chromium-browserredhat-upgrade-chromium-browser-debuginfo

References

REDHAT-RHSA-2016:2919
BID-94633
GENTOO-GLSA-201612-11
NVD-CVE-2016-5204
UBUNTU-USN-3153-1
DEBIAN-DSA-3731

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today