Oval Definition:	oval:org.opensuse.security:def:20165137
Revision Date: 2022-06-30 Version: 1 Title: CVE-2016-5137 Description: The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy (CSP) implementation in Blink, as used in Google Chrome before 52.0.2743.82, does not apply http :80 policies to https :443 URLs and does not apply ws :80 policies to wss :443 URLs, which makes it easier for remote attackers to determine whether a specific HSTS web site has been visited by reading a CSP report. NOTE: this vulnerability is associated with a specification change after CVE-2016-1617 resolution. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-5137 Mitre CVE-2016-5137 SUSE CVE-2016-5137 openSUSE-SU-2016:1865-1 openSUSE-SU-2016:1865-1 openSUSE-SU-2016:1868-1 openSUSE-SU-2016:1868-1 openSUSE-SU-2016:1869-1 openSUSE-SU-2016:1869-1 openSUSE-SU-2016:1918-1 openSUSE-SU-2016:1918-1 Platform(s): openSUSE 13.1 openSUSE 13.2 openSUSE Leap 15.0 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap 42.1 openSUSE Tumbleweed SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis openSUSE 13.1 is installed AND Package Information chromedriver-52.0.2743.82-150.1 is installed OR chromium-52.0.2743.82-150.1 is installed OR chromium-desktop-gnome-52.0.2743.82-150.1 is installed OR chromium-desktop-kde-52.0.2743.82-150.1 is installed OR chromium-ffmpegsumo-52.0.2743.82-150.1 is installed Definition Synopsis openSUSE 13.2 is installed AND Package Information chromedriver-52.0.2743.82-111.1 is installed OR chromium-52.0.2743.82-111.1 is installed OR chromium-desktop-gnome-52.0.2743.82-111.1 is installed OR chromium-desktop-kde-52.0.2743.82-111.1 is installed OR chromium-ffmpegsumo-52.0.2743.82-111.1 is installed Definition Synopsis openSUSE Leap 42.1 is installed AND Package Information chromedriver-52.0.2743.82-61.1 is installed AND chromedriver is signed with openSUSE key OR chromium-52.0.2743.82-61.1 is installed AND chromium is signed with openSUSE key OR chromium-desktop-gnome-52.0.2743.82-61.1 is installed AND chromium-desktop-gnome is signed with openSUSE key OR chromium-desktop-kde-52.0.2743.82-61.1 is installed AND chromium-desktop-kde is signed with openSUSE key OR chromium-ffmpegsumo-52.0.2743.82-61.1 is installed AND chromium-ffmpegsumo is signed with openSUSE key Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-52.0.2743.82-89 is installed OR chromium-52.0.2743.82-89 is installed OR chromium-desktop-gnome-52.0.2743.82-89 is installed OR chromium-desktop-kde-52.0.2743.82-89 is installed OR chromium-ffmpegsumo-52.0.2743.82-89 is installed Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information chromium-66.0.3359.170-lp150.1 is installed AND chromium is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND Package Information chromedriver-55.0.2883.75-3.1 is installed OR chromium-55.0.2883.75-3.1 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-52.0.2743.82-89.1 is installed OR chromium-52.0.2743.82-89.1 is installed OR chromium-desktop-gnome-52.0.2743.82-89.1 is installed OR chromium-desktop-kde-52.0.2743.82-89.1 is installed OR chromium-ffmpegsumo-52.0.2743.82-89.1 is installed Definition Synopsis openSUSE Leap 15.3 is installed AND Package Information chromium-90.0.4430.212-bp153.1.1 is installed AND chromium is signed with openSUSE key Definition Synopsis openSUSE Leap 15.4 is installed AND Package Information chromium-101.0.4951.64-bp154.1.2 is installed AND chromium is signed with openSUSE key
BACK