Your submission was sent successfully! Close

CVE-2019-13711

Published: 25 November 2019

Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Priority

Medium

CVSS 3 base score: 5.3

Status

Package Release Status
chromium-browser
Launchpad, Ubuntu, Debian
bionic
Released (78.0.3904.70-0ubuntu0.18.04.2)
disco
Released (78.0.3904.70-0ubuntu0.19.04.4)
eoan
Released (79.0.3945.79-0ubuntu0.19.10.2)
precise Does not exist

trusty Does not exist

upstream
Released (78.0.3904.70)
xenial
Released (78.0.3904.70-0ubuntu0.16.04.2)

Notes

AuthorNote
amurray
The Debian chromium source package is called chromium-browser in Ubuntu

References

Bugs