DescriptionGoogle Chrome before 30.0.1599.66 uses incorrect function calls to determine the values of NavigationEntry objects, which allows remote attackers to spoof the address bar via vectors involving a response with a 204 (aka No Content) status code.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- openSUSE-SU-2013:1556-1, published Fri Dec 8 15:48:58 2023
- openSUSE-SU-2013:1861-1, published Fri Dec 8 15:48:32 2023 openSUSE-SU-2014:0065-1
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Leap 15.0|| ||Patchnames: |
openSUSE Leap 15.0 GA chromium-66.0.3359.170-lp150.1.1
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA chromedriver-55.0.2883.75-3.1
openSUSE Tumbleweed GA ungoogled-chromium-113.0.5672.92-1.1
SUSE Timeline for this CVECVE page created: Wed Oct 2 15:15:13 2013
CVE page last modified: Fri Dec 8 16:59:09 2023