CVE-2016-1697

Published: 06 June 2016

The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

Priority

Medium

CVSS 3 base score: 8.8

Status

Package Release Status
chromium-browser
Launchpad, Ubuntu, Debian
Upstream
Released (51.0.2704.79)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (51.0.2704.79-0ubuntu0.16.04.1.1242)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [51.0.2704.79-0ubuntu0.14.04.1.1121])
oxide-qt
Launchpad, Ubuntu, Debian
Upstream
Released (1.15.7)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (1.15.7-0ubuntu0.16.04.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1.15.7-0ubuntu0.14.04.1])