1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
Candidate: CVE-2013-2876
PublicDate: 2013-07-10
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2876
https://code.google.com/p/chromium/issues/detail?id=229504
http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html
http://git.chromium.org/gitweb/?p=chromium/chromium.git;a=commit;h=ac41418e77bf9d82a6e7875c504fad5fd2ba1f7f
Description:
browser/extensions/api/tabs/tabs_api.cc in Google Chrome before
28.0.1500.71 does not properly enforce restrictions on the capture of
screenshots by extensions, which allows remote attackers to obtain
sensitive information about the content of a previous page via vectors
involving an interstitial page.
Ubuntu-Description:
Notes:
Bugs:
https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1199644
Priority: medium
Discovered-by:
Assigned-to: chad
Patches_chromium-browser:
upstream_chromium-browser: released (28.0.1500.71)
lucid_chromium-browser: ignored (reached end-of-life)
precise_chromium-browser: released (28.0.1500.71-0ubuntu1.12.04.1)
quantal_chromium-browser: released (28.0.1500.71-0ubuntu1.12.10.1)
raring_chromium-browser: released (28.0.1500.71-0ubuntu1.13.04.1)
devel_chromium-browser: released (28.0.1500.71-0ubuntu1.13.10.1)
|