Oval Definition:	oval:com.ubuntu.precise:def:20156762000
Revision Date: 2015-10-15 Version: 1 Title: CVE-2015-6762 on Ubuntu 12.04 LTS (precise) - medium. Description: The CSSFontFaceSrcValue::fetch function in core/css/CSSFontFaceSrcValue.cpp in the Cascading Style Sheets (CSS) implementation in Blink, as used in Google Chrome before 46.0.2490.71, does not use the CORS cross-origin request algorithm when a font's URL appears to be a same-origin URL, which allows remote web servers to bypass the Same Origin Policy via a redirect. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-6762 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, a decision has been made to ignore it.
BACK