Oval Definition:	oval:com.ubuntu.precise:def:20143160000
Revision Date: 2014-07-20 Version: 1 Title: CVE-2014-3160 on Ubuntu 12.04 LTS (precise) - medium. Description: The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG files, which allows remote attackers to bypass the Same Origin Policy via a crafted file. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-3160 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'chromium-browser' package in precise was vulnerable but has been fixed (note: '36.0.1985.125-0ubuntu1.12.04.0~pkg897').
BACK