OVAL Reference oval:com.ubuntu.trusty:def:20151281000

Oval Definition:

oval:com.ubuntu.trusty:def:20151281000

Revision Date:	2015-07-22	Version:	1
Title:	CVE-2015-1281 on Ubuntu 14.04 LTS (trusty) - medium.
Description:	core/loader/ImageLoader.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly determine the V8 context of a microtask, which allows remote attackers to bypass Content Security Policy (CSP) restrictions by providing an image from an unintended source.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-1281
Platform(s):	Ubuntu 14.04 LTS	Product(s):
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The 'chromium-browser' package in trusty was vulnerable but has been fixed (note: '44.0.2403.89-0ubuntu0.14.04.1.1095'). OR The 'oxide-qt' package in trusty was vulnerable but has been fixed (note: '1.8.4-0ubuntu0.14.04.1').