Oval Definition:oval:org.opensuse.security:def:20136636
Revision Date:2022-06-30Version:1
Title:CVE-2013-6636
Description:

The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote attackers to spoof the address bar via vectors involving the document.write method.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-6636
Mitre CVE-2013-6636
SUSE CVE-2013-6636
openSUSE-SU-2013:1927-1
openSUSE-SU-2013:1933-1
openSUSE-SU-2014:0065-1
Platform(s):openSUSE 12.2 Update
openSUSE 12.3 Update
openSUSE 13.1
openSUSE Leap 15.0
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • chromedriver-31.0.1650.63-13.7 is installed
  • OR chromium-31.0.1650.63-13.7 is installed
  • OR chromium-desktop-gnome-31.0.1650.63-13.7 is installed
  • OR chromium-desktop-kde-31.0.1650.63-13.7 is installed
  • OR chromium-ffmpegsumo-31.0.1650.63-13.7 is installed
  • OR chromium-suid-helper-31.0.1650.63-13.7 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • chromium-66.0.3359.170-lp150.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • chromedriver-55.0.2883.75-3.1 is installed
  • OR chromium-55.0.2883.75-3.1 is installed
    • BACK