Oval Definition:oval:org.opensuse.security:def:20136657
Revision Date:2022-06-30Version:1
Title:CVE-2013-6657
Description:

core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 33.0.1750.117, inserts the about:blank URL during certain blocking of FORM elements within HTTP requests, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified vectors.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-6657
Mitre CVE-2013-6657
SUSE CVE-2013-6657
openSUSE-SU-2014:0327-1
Platform(s):openSUSE 12.3 Update
openSUSE 13.1
openSUSE Leap 15.0
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • chromedriver-33.0.1750.117-21.2 is installed
  • OR chromium-33.0.1750.117-21.2 is installed
  • OR chromium-desktop-gnome-33.0.1750.117-21.2 is installed
  • OR chromium-desktop-kde-33.0.1750.117-21.2 is installed
  • OR chromium-ffmpegsumo-33.0.1750.117-21.2 is installed
  • OR chromium-suid-helper-33.0.1750.117-21.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • chromium-66.0.3359.170-lp150.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • chromedriver-55.0.2883.75-3.1 is installed
  • OR chromium-55.0.2883.75-3.1 is installed
    • BACK