Lucene search

K

Https://chromereleases.googleblog.comGCSA-4100605369767083443

HistorySep 24, 2015 - 12:00 a.m.

Stable Channel Update

2015-09-2400:00:00

https://chromereleases.googleblog.com

chromereleases.googleblog.com

15

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

86.4%

The stable channel has been updated to 45.0.2454.101 for Windows, Mac, and Linux.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix.

The following bugs from external security researchers were fixed in this release:

[$TBD][530301] High CVE-2015-1303: Cross-origin bypass in DOM. Credit to Mariusz Mlynski.

[$TBD][531891] High CVE-2015-1304: Cross-origin bypass in V8. Credit to Mariusz Mlynski.

Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Krishna Govind
Google Chrome

Affected configurations

Vulners

Node

googlechromeRange<45.0.2454.101

CPENameOperatorVersion
google chromelt45.0.2454.101

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

86.4%

Related for GCSA-4100605369767083443

archlinux1 securityvulns4 openvas9 redhat1 nessus9 ubuntu1 freebsd1 kaspersky1 suse2 mageia1 cvelist2 nvd2 ubuntucve2 cve2 debiancve2 prion2 seebug2 debian2 osv1 gentoo1