CVE 2011-3046
The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
Related bugs and status
CVE-2011-3046 (Candidate) is related to these bugs:
Bug #943281: armhf FTBFS in precise
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
943281 | armhf FTBFS in precise | chromium-browser (Ubuntu) | High | Fix Released | ||
943281 | armhf FTBFS in precise | chromium-browser (Ubuntu Precise) | High | Fix Released |
Bug #948749: Update to 17.0.963.66
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
948749 | Update to 17.0.963.66 | chromium-browser (Ubuntu) | Medium | Fix Released | ||
948749 | Update to 17.0.963.66 | chromium-browser (Ubuntu Lucid) | Medium | Fix Released | ||
948749 | Update to 17.0.963.66 | chromium-browser (Ubuntu Maverick) | Medium | Fix Released | ||
948749 | Update to 17.0.963.66 | chromium-browser (Ubuntu Oneiric) | Medium | Fix Released | ||
948749 | Update to 17.0.963.66 | chromium-browser (Ubuntu Precise) | Medium | Fix Released | ||
948749 | Update to 17.0.963.66 | chromium-browser (Ubuntu Natty) | Medium | Fix Released |
Bug #950174: Update to 17.0.963.78
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
950174 | Update to 17.0.963.78 | chromium-browser (Ubuntu) | Medium | Fix Released | ||
950174 | Update to 17.0.963.78 | chromium-browser (Ubuntu Lucid) | Undecided | Fix Released | ||
950174 | Update to 17.0.963.78 | chromium-browser (Ubuntu Maverick) | Undecided | Fix Released | ||
950174 | Update to 17.0.963.78 | chromium-browser (Ubuntu Oneiric) | Undecided | Fix Released | ||
950174 | Update to 17.0.963.78 | chromium-browser (Ubuntu Natty) | Undecided | Fix Released | ||
950174 | Update to 17.0.963.78 | chromium-browser (Ubuntu Precise) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.