Oval Definition:oval:org.opensuse.security:def:20143197
Revision Date:2022-06-30Version:1
Title:CVE-2014-3197
Description:

The NavigationScheduler::schedulePageBlock function in core/loader/NavigationScheduler.cpp in Blink, as used in Google Chrome before 38.0.2125.101, does not properly provide substitute data for pages blocked by the XSS auditor, which allows remote attackers to obtain sensitive information via a crafted web site.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-3197
Mitre CVE-2014-3197
SUSE CVE-2014-3197
openSUSE-SU-2014:1378-1
Platform(s):openSUSE 13.1
openSUSE Leap 15.0
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • chromedriver-38.0.2125.104-54.4 is installed
  • OR chromium-38.0.2125.104-54.4 is installed
  • OR chromium-desktop-gnome-38.0.2125.104-54.4 is installed
  • OR chromium-desktop-kde-38.0.2125.104-54.4 is installed
  • OR chromium-ffmpegsumo-38.0.2125.104-54.4 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • chromium-66.0.3359.170-lp150.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • chromedriver-55.0.2883.75-3.1 is installed
  • OR chromium-55.0.2883.75-3.1 is installed
    • BACK