Redhat

Enterprise Linux Server Supplementary

84 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2016-2051

  • EPSS 0.3%
  • Published 25.01.2016 11:59:09
  • Last modified 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google V8 before 4.8.271.17, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

7.5

CVE-2015-1289

  • EPSS 1.47%
  • Published 23.07.2015 00:59:18
  • Last modified 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google Chrome before 44.0.2403.89 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

6.8

CVE-2015-1288

  • EPSS 0.85%
  • Published 23.07.2015 00:59:17
  • Last modified 12.04.2025 10:46:40

The Spellcheck API implementation in Google Chrome before 44.0.2403.89 does not use an HTTPS session for downloading a Hunspell dictionary, which allows man-in-the-middle attackers to deliver incorrect spelling suggestions or possibly have unspecifie...

4.3

CVE-2015-1287

  • EPSS 0.87%
  • Published 23.07.2015 00:59:16
  • Last modified 12.04.2025 10:46:40

Blink, as used in Google Chrome before 44.0.2403.89, enables a quirks-mode exception that limits the cases in which a Cascading Style Sheets (CSS) document is required to have the text/css content type, which allows remote attackers to bypass the Sam...

4.3

CVE-2015-1286

  • EPSS 0.69%
  • Published 23.07.2015 00:59:15
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the V8ContextNativeHandler::GetModuleSystem function in extensions/renderer/v8_context_native_handler.cc in Google Chrome before 44.0.2403.89 allows remote attackers to inject arbitrary web script or HTML b...

5

CVE-2015-1285

  • EPSS 1.11%
  • Published 23.07.2015 00:59:14
  • Last modified 12.04.2025 10:46:40

The XSSAuditor::canonicalize function in core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 44.0.2403.89, does not properly choose a truncation point, which makes it easier for remote attackers to obtain sens...

7.5

CVE-2015-1284

  • EPSS 1.22%
  • Published 23.07.2015 00:59:13
  • Last modified 12.04.2025 10:46:40

The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly check for a page's maximum number of frames, which allows remote attackers to cause a denial of service (inva...

6.8

CVE-2015-1282

  • EPSS 2.03%
  • Published 23.07.2015 00:59:11
  • Last modified 12.04.2025 10:46:40

Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Document.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF do...

4.3

CVE-2015-1281

  • EPSS 0.98%
  • Published 23.07.2015 00:59:10
  • Last modified 12.04.2025 10:46:40

core/loader/ImageLoader.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly determine the V8 context of a microtask, which allows remote attackers to bypass Content Security Policy (CSP) restrictions by providing an image fr...

7.5

CVE-2015-1280

  • EPSS 2.17%
  • Published 23.07.2015 00:59:09
  • Last modified 12.04.2025 10:46:40

SkPictureShader.cpp in Skia, as used in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging access to a renderer process and providing cra...