Lucene search
PRIOn knowledge basePRION:CVE-2015-1288HistoryJul 23, 2015 - 12:59 a.m.
Design/Logic Flaw
2015-07-2300:59:00
PRIOn knowledge base
www.prio-n.com
9
The Spellcheck API implementation in Google Chrome before 44.0.2403.89 does not use an HTTPS session for downloading a Hunspell dictionary, which allows man-in-the-middle attackers to deliver incorrect spelling suggestions or possibly have unspecified other impact via a crafted file, a related issue to CVE-2015-1263.
References
lists.opensuse.org/opensuse-security-announce/2015-07/msg00038.html
rhn.redhat.com/errata/RHSA-2015-1499.html
www.debian.org/security/2015/dsa-3315
www.securityfocus.com/bid/75973
www.securitytracker.com/id/1033031
code.google.com/p/chromium/issues/detail?id=479162
codereview.chromium.org/1056103005
googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
security.gentoo.org/glsa/201603-09
Related
cve
cve
CVE-2015-1288
2015-07-23 00:59:17
CVE-2015-1263
2015-05-20 10:59:15
nvd
nvd
CVE-2015-1288
2015-07-23 00:59:17
CVE-2015-1263
2015-05-20 10:59:15
ubuntucve
ubuntucve
CVE-2015-1288
2015-07-23 00:00:00
CVE-2015-1263
2015-05-20 00:00:00
debiancve
debiancve
CVE-2015-1288
2015-07-23 00:59:00
CVE-2015-1263
2015-05-20 10:59:00
cvelist
cvelist
CVE-2015-1288
2015-07-23 00:00:00
CVE-2015-1263
2015-05-20 10:00:00
prion
prion
Design/Logic Flaw
2015-05-20 10:59:00
mageia
mageia
Updated chromium-browser package fixes security vulnerabilities
2015-07-27 20:45:18
Updated chromium-browser-stable packages fix security vulnerabilities
2015-05-23 21:53:02
openvas
openvas
Debian: Security Advisory (DSA-3315-1)
2015-07-22 00:00:00
Debian Security Advisory DSA 3315-1 (chromium-browser - security update)
2015-07-23 00:00:00
Mageia: Security Advisory (MGASA-2015-0235)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-24 12:29:48
[SECURITY] [DSA 3267-1] chromium-browser security update
2015-05-22 05:02:40
securityvulns
securityvulns
[SECURITY] [DSA 3315-1] chromium-browser security update
2015-07-26 00:00:00
[SECURITY] [DSA 3267-1] chromium-browser security update
2015-05-25 00:00:00
Google Chrome / Chromium multiple security vulnerabilities
2015-07-26 00:00:00
osv
osv
chromium-browser - security update
2015-07-23 00:00:00
chromium-browser - security update
2015-05-22 00:00:00
nessus
nessus
Debian DSA-3315-1 : chromium-browser - security update
2015-07-27 00:00:00
Google Chrome < 43.0.2357.65 Multiple Vulnerabilities
2015-06-16 00:00:00
RHEL 6 : chromium-browser (RHSA-2015:1023)
2015-05-26 00:00:00
archlinux
archlinux
chromium: multiple issues
2015-05-21 00:00:00
chromium: multiple issues
2015-07-23 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-05-19 00:00:00
chromium -- multiple vulnerabilities
2015-07-21 00:00:00
threatpost
threatpost
Google Fixes Sandbox Escape in Chrome
2015-05-19 13:19:05
Google Patches 43 Bugs in Chrome
2015-07-22 09:23:06
redhat
redhat
(RHSA-2015:1023) Important: chromium-browser security update
2015-05-25 00:00:00
(RHSA-2015:1499) Important: chromium-browser security update
2015-07-27 00:00:00
kaspersky
kaspersky
KLA10585 Multiple vulnerabilities in Google Chrome
2015-05-19 00:00:00
KLA10636 Multiple vulnerabilities in Google Chrome
2015-07-21 00:00:00
chrome
chrome
Stable Channel Update
2015-05-19 00:00:00
Stable Channel Update
2015-07-21 00:00:00
suse
suse
Security update for Chromium (important)
2015-07-26 21:08:24
gentoo
gentoo
Chromium: Multiple vulnerabilities
2015-06-23 00:00:00
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00