DescriptionThe extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
|National Vulnerability Database|
- openSUSE-SU-2012:0374-1, published Fri, 16 Mar 2012 13:08:23 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Leap 15.0|| ||Patchnames:
openSUSE Leap 15.0 GA chromium
|openSUSE Tumbleweed|| ||Patchnames:
openSUSE Tumbleweed GA chromedriver