Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-2582-1
HistoryMay 06, 2015 - 12:00 a.m.

Oxide vulnerabilities

2015-05-0600:00:00
ubuntu.com
36

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.021

Percentile

89.2%

JSON

Releases

  • Ubuntu 15.04
  • Ubuntu 14.10
  • Ubuntu 14.04 ESM

Packages

  • oxide-qt - Web browser engine library for Qt (QML plugin)

Details

A use-after-free was discovered in the DOM implementation in Blink. If a
user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to cause a denial of service via renderer
crash, or execute arbitrary code with the privileges of the sandboxed
render process. (CVE-2015-1243)

Multiple security issues were discovered in Chromium. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to read uninitialized memory, cause a denial
of service via application crash or execute arbitrary code with the
privileges of the user invoking the program. (CVE-2015-1250)

OSVersionArchitecturePackageVersionFilename
Ubuntu15.04noarchliboxideqtcore0< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchliboxideqt-qmlplugin< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchliboxideqtquick0< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchoxideqt-chromedriver< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchoxideqt-codecs< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchoxideqt-codecs-dbg< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchoxideqt-codecs-extra< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchoxideqt-codecs-extra-dbg< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu15.04noarchoxideqt-dbg< 1.6.6-0ubuntu0.15.04.1UNKNOWN
Ubuntu14.10noarchliboxideqtcore0< 1.6.6-0ubuntu0.14.10.1UNKNOWN
Rows per page:
1-10 of 291

Related

kaspersky 1
archlinux 1
debian 2
openvas 8
nessus 9
chrome 1
mageia 1
freebsd 1
redhat 1
osv 3
securityvulns 2
prion 2
nvd 2
debiancve 2
cve 2
cvelist 2
ubuntucve 2
gentoo 1
kaspersky
kaspersky
KLA10567 Denial of service vulnerability in Google Chrome
2015-04-28 00:00:00
archlinux
archlinux
chromium: multiple issues
2015-04-29 00:00:00
debian
debian
[SECURITY] [DSA 3242-1] chromium-browser security update
2015-05-01 11:55:26
[SECURITY] [DSA 3242-1] chromium-browser security update
2015-05-01 11:55:26
openvas
openvas
Debian Security Advisory DSA 3242-1 (chromium-browser - security update)
2015-04-30 00:00:00
Google Chrome Multiple Vulnerabilities-01 (May 2015) - Linux
2015-05-04 00:00:00
Mageia: Security Advisory (MGASA-2015-0182)
2022-01-28 00:00:00
nessus
nessus
Debian DSA-3242-1 : chromium-browser - security update
2015-05-04 00:00:00
RHEL 6 : chromium-browser (RHSA-2015:0921)
2015-05-01 00:00:00
Google Chrome < 42.0.2311.135 Multiple Vulnerabilities (Mac OS X)
2015-04-29 00:00:00
chrome
chrome
Stable Channel Update
2015-04-28 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2015-05-03 03:19:16
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-04-28 00:00:00
redhat
redhat
(RHSA-2015:0921) Important: chromium-browser security and bug fix update
2015-04-30 00:00:00
osv
osv
chromium-browser - security update
2015-04-30 00:00:00
chromedriver-55.0.2883.75-3.1 on GA media
2024-06-15 00:00:00
ungoogled-chromium-113.0.5672.92-1.1 on GA media
2024-06-15 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3242-1] chromium-browser security update
2015-05-05 00:00:00
Google Chrome / Chromium multiple security vulnerabilities
2015-05-25 00:00:00
prion
prion
Design/Logic Flaw
2015-05-01 10:59:00
Design/Logic Flaw
2015-05-01 10:59:00
nvd
nvd
CVE-2015-1243
2015-05-01 10:59:05
CVE-2015-1250
2015-05-01 10:59:05
debiancve
debiancve
CVE-2015-1250
2015-05-01 10:59:00
CVE-2015-1243
2015-05-01 10:59:00
cve
cve
CVE-2015-1243
2015-05-01 10:59:05
CVE-2015-1250
2015-05-01 10:59:05
cvelist
cvelist
CVE-2015-1243
2015-05-01 10:00:00
CVE-2015-1250
2015-05-01 10:00:00
ubuntucve
ubuntucve
CVE-2015-1250
2015-04-30 00:00:00
CVE-2015-1243
2015-04-30 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2015-06-23 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.021

Percentile

89.2%

JSON
Related for USN-2582-1
kaspersky1archlinux1debian2openvas8nessus9chrome1mageia1freebsd1redhat1osv3securityvulns2prion2nvd2debiancve2cve2cvelist2ubuntucve2gentoo1