Oval Definition:oval:org.opensuse.security:def:20141747
Revision Date:2022-06-30Version:1
Title:CVE-2014-1747
Description:

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS (UXSS)."
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-1747
Mitre CVE-2014-1747
SUSE CVE-2014-1747
openSUSE-SU-2014:0783-1
Platform(s):openSUSE 12.3 Update
openSUSE 13.1
openSUSE Leap 15.0
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • chromedriver-35.0.1916.114-37.4 is installed
  • OR chromium-35.0.1916.114-37.4 is installed
  • OR chromium-desktop-gnome-35.0.1916.114-37.4 is installed
  • OR chromium-desktop-kde-35.0.1916.114-37.4 is installed
  • OR chromium-ffmpegsumo-35.0.1916.114-37.4 is installed
  • OR chromium-suid-helper-35.0.1916.114-37.4 is installed
  • OR ninja-3.0+git.20130603.0f53fd3-2.6.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • chromium-66.0.3359.170-lp150.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • chromedriver-55.0.2883.75-3.1 is installed
  • OR chromium-55.0.2883.75-3.1 is installed
    • BACK