Oval Definition:	oval:com.ubuntu.precise:def:20156786000
Revision Date: 2015-12-05 Version: 1 Title: CVE-2015-6786 on Ubuntu 12.04 LTS (precise) - medium. Description: The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList.cpp in the Content Security Policy (CSP) implementation in Google Chrome before 47.0.2526.73 accepts a blob:, data:, or filesystem: URL as a match for a * pattern, which allows remote attackers to bypass intended scheme restrictions in opportunistic circumstances by leveraging a policy that relies on this pattern. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-6786 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, a decision has been made to ignore it.
BACK