Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-8664 (GCVE-0-2015-8664)
Vulnerability from cvelistv5
Published
2015-12-24 02:00
Modified
2024-08-06 08:20
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T08:20:43.671Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"name": "1034491",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1034491"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://codereview.chromium.org/1498903003"
},
{
"name": "USN-2860-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2860-1"
},
{
"name": "79686",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/79686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-12-15T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-12-05T14:57:01",
"orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
"shortName": "Chrome"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"name": "1034491",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1034491"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://codereview.chromium.org/1498903003"
},
{
"name": "USN-2860-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2860-1"
},
{
"name": "79686",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/79686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@google.com",
"ID": "CVE-2015-8664",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"refsource": "CONFIRM",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"name": "1034491",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1034491"
},
{
"name": "https://code.google.com/p/chromium/issues/detail?id=569486",
"refsource": "CONFIRM",
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"name": "https://code.google.com/p/chromium/issues/detail?id=565023",
"refsource": "CONFIRM",
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"name": "https://codereview.chromium.org/1498903003",
"refsource": "CONFIRM",
"url": "https://codereview.chromium.org/1498903003"
},
{
"name": "USN-2860-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2860-1"
},
{
"name": "79686",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/79686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
"assignerShortName": "Chrome",
"cveId": "CVE-2015-8664",
"datePublished": "2015-12-24T02:00:00",
"dateReserved": "2015-12-23T00:00:00",
"dateUpdated": "2024-08-06T08:20:43.671Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2015-8664\",\"sourceIdentifier\":\"chrome-cve-admin@google.com\",\"published\":\"2015-12-24T03:59:01.143\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de entero en la funci\u00f3n the WebCursor::Deserialize en content/common/cursors/webcursor.cc en Google Chrome en versiones anteriores a la 47.0.2526.106 permite a atacantes remotos causar una denegaci\u00f3n de servicio o posiblemente tener otro impacto no especificado a trav\u00e9s de un array de pixel RGBA con dimensiones manipuladas, una vulnerabilidad diferente a CVE-2015-6792.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-189\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"47.0.2526.80\",\"matchCriteriaId\":\"27BA9DAB-BD1B-48EC-A622-AA702BE4FA0E\"}]}]}],\"references\":[{\"url\":\"http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.securityfocus.com/bid/79686\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.securitytracker.com/id/1034491\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-2860-1\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://code.google.com/p/chromium/issues/detail?id=565023\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://code.google.com/p/chromium/issues/detail?id=569486\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://codereview.chromium.org/1498903003\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/79686\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1034491\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-2860-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://code.google.com/p/chromium/issues/detail?id=565023\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://code.google.com/p/chromium/issues/detail?id=569486\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://codereview.chromium.org/1498903003\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
cnvd-2015-08480
Vulnerability from cnvd
Title: Google Chrome整数溢出漏洞(CNVD-2015-08480)
Description:
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。
Google Chrome 47.0.2526.106之前版本的content/common/cursors/webcursor.cc文件中的‘WebCursor::Deserialize’函数存在整数溢出漏洞。远程攻击者可借助特制大小的RGBA像素数组利用该漏洞造成拒绝服务。
Severity: 高
Patch Name: Google Chrome整数溢出漏洞(CNVD-2015-08480)的补丁
Patch Description:
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。
Google Chrome 47.0.2526.106之前版本的content/common/cursors/webcursor.cc文件中的‘WebCursor::Deserialize’函数存在整数溢出漏洞。远程攻击者可借助特制大小的RGBA像素数组利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html
Reference: https://codereview.chromium.org/1498903003 http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html https://code.google.com/p/chromium/issues/detail?id=569486
Impacted products
| Name | Google Chrome <47.0.2526.106 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2015-8664"
}
},
"description": "Google Chrome\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3eWeb\u6d4f\u89c8\u5668\u3002\r\n\r\nGoogle Chrome 47.0.2526.106\u4e4b\u524d\u7248\u672c\u7684content/common/cursors/webcursor.cc\u6587\u4ef6\u4e2d\u7684\u2018WebCursor::Deserialize\u2019\u51fd\u6570\u5b58\u5728\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u5927\u5c0f\u7684RGBA\u50cf\u7d20\u6570\u7ec4\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "oshima",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2015-08480",
"openTime": "2015-12-25",
"patchDescription": "Google Chrome\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3eWeb\u6d4f\u89c8\u5668\u3002\r\n\r\nGoogle Chrome 47.0.2526.106\u4e4b\u524d\u7248\u672c\u7684content/common/cursors/webcursor.cc\u6587\u4ef6\u4e2d\u7684\u2018WebCursor::Deserialize\u2019\u51fd\u6570\u5b58\u5728\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u5927\u5c0f\u7684RGBA\u50cf\u7d20\u6570\u7ec4\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Google Chrome\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2015-08480\uff09\u7684\u8865\u4e01",
"products": {
"product": "Google Chrome \u003c47.0.2526.106"
},
"referenceLink": "https://codereview.chromium.org/1498903003\r\nhttp://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html\r\nhttps://code.google.com/p/chromium/issues/detail?id=569486",
"serverity": "\u9ad8",
"submitTime": "2015-12-24",
"title": "Google Chrome\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2015-08480\uff09"
}
RHSA-2015:2665
Vulnerability from csaf_redhat
Published
2015-12-17 16:15
Modified
2025-09-26 03:15
Summary
Red Hat Security Advisory: chromium-browser security update
Notes
Topic
Updated chromium-browser packages that fix two security issues are now
available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
Chromium is an open-source web browser, powered by WebKit (Blink).
Two flaws were found in the processing of malformed web content. A web page
containing malicious content could cause Chromium to crash, execute
arbitrary code, or disclose sensitive information when visited by the
victim. (CVE-2015-6792)
All Chromium users should upgrade to these updated packages, which
contain Chromium version 47.0.2526.106, which corrects these issues.
After installing the update, Chromium must be restarted for the changes
to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated chromium-browser packages that fix two security issues are now\navailable for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Chromium is an open-source web browser, powered by WebKit (Blink).\n\nTwo flaws were found in the processing of malformed web content. A web page\ncontaining malicious content could cause Chromium to crash, execute\narbitrary code, or disclose sensitive information when visited by the\nvictim. (CVE-2015-6792)\n\nAll Chromium users should upgrade to these updated packages, which\ncontain Chromium version 47.0.2526.106, which corrects these issues.\nAfter installing the update, Chromium must be restarted for the changes\nto take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:2665",
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"category": "external",
"summary": "1291989",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1291989"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2665.json"
}
],
"title": "Red Hat Security Advisory: chromium-browser security update",
"tracking": {
"current_release_date": "2025-09-26T03:15:16+00:00",
"generator": {
"date": "2025-09-26T03:15:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2015:2665",
"initial_release_date": "2015-12-17T16:15:32+00:00",
"revision_history": [
{
"date": "2015-12-17T16:15:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-12-17T16:15:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-26T03:15:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product_id": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser-debuginfo@47.0.2526.106-1.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product_id": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser@47.0.2526.106-1.el6?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product_id": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser@47.0.2526.106-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product_id": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser-debuginfo@47.0.2526.106-1.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-6792",
"discovery_date": "2015-12-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1291989"
}
],
"notes": [
{
"category": "description",
"text": "The MIDI subsystem in Google Chrome before 47.0.2526.106 does not properly handle the sending of data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, related to midi_manager.cc, midi_manager_alsa.cc, and midi_manager_mac.cc, a different vulnerability than CVE-2015-8664.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "chromium-browser: Fixes from internal audits and fuzzing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-6792"
},
{
"category": "external",
"summary": "RHBZ#1291989",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1291989"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-6792",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-6792"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-6792",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-6792"
},
{
"category": "external",
"summary": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
}
],
"release_date": "2015-12-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-12-17T16:15:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "chromium-browser: Fixes from internal audits and fuzzing"
},
{
"cve": "CVE-2015-8664",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2015-12-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1294768"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "chromium-browser: Use-After-free in MidiHost",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-8664"
},
{
"category": "external",
"summary": "RHBZ#1294768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-8664",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8664"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664"
}
],
"release_date": "2015-12-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-12-17T16:15:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "chromium-browser: Use-After-free in MidiHost"
}
]
}
rhsa-2015:2665
Vulnerability from csaf_redhat
Published
2015-12-17 16:15
Modified
2025-09-26 03:15
Summary
Red Hat Security Advisory: chromium-browser security update
Notes
Topic
Updated chromium-browser packages that fix two security issues are now
available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
Chromium is an open-source web browser, powered by WebKit (Blink).
Two flaws were found in the processing of malformed web content. A web page
containing malicious content could cause Chromium to crash, execute
arbitrary code, or disclose sensitive information when visited by the
victim. (CVE-2015-6792)
All Chromium users should upgrade to these updated packages, which
contain Chromium version 47.0.2526.106, which corrects these issues.
After installing the update, Chromium must be restarted for the changes
to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated chromium-browser packages that fix two security issues are now\navailable for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Chromium is an open-source web browser, powered by WebKit (Blink).\n\nTwo flaws were found in the processing of malformed web content. A web page\ncontaining malicious content could cause Chromium to crash, execute\narbitrary code, or disclose sensitive information when visited by the\nvictim. (CVE-2015-6792)\n\nAll Chromium users should upgrade to these updated packages, which\ncontain Chromium version 47.0.2526.106, which corrects these issues.\nAfter installing the update, Chromium must be restarted for the changes\nto take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:2665",
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"category": "external",
"summary": "1291989",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1291989"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2665.json"
}
],
"title": "Red Hat Security Advisory: chromium-browser security update",
"tracking": {
"current_release_date": "2025-09-26T03:15:16+00:00",
"generator": {
"date": "2025-09-26T03:15:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2015:2665",
"initial_release_date": "2015-12-17T16:15:32+00:00",
"revision_history": [
{
"date": "2015-12-17T16:15:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-12-17T16:15:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-26T03:15:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product_id": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser-debuginfo@47.0.2526.106-1.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product_id": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser@47.0.2526.106-1.el6?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product_id": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser@47.0.2526.106-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product_id": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser-debuginfo@47.0.2526.106-1.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-6792",
"discovery_date": "2015-12-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1291989"
}
],
"notes": [
{
"category": "description",
"text": "The MIDI subsystem in Google Chrome before 47.0.2526.106 does not properly handle the sending of data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, related to midi_manager.cc, midi_manager_alsa.cc, and midi_manager_mac.cc, a different vulnerability than CVE-2015-8664.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "chromium-browser: Fixes from internal audits and fuzzing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-6792"
},
{
"category": "external",
"summary": "RHBZ#1291989",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1291989"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-6792",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-6792"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-6792",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-6792"
},
{
"category": "external",
"summary": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
}
],
"release_date": "2015-12-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-12-17T16:15:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "chromium-browser: Fixes from internal audits and fuzzing"
},
{
"cve": "CVE-2015-8664",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2015-12-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1294768"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "chromium-browser: Use-After-free in MidiHost",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-8664"
},
{
"category": "external",
"summary": "RHBZ#1294768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-8664",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8664"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664"
}
],
"release_date": "2015-12-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-12-17T16:15:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "chromium-browser: Use-After-free in MidiHost"
}
]
}
rhsa-2015_2665
Vulnerability from csaf_redhat
Published
2015-12-17 16:15
Modified
2024-11-14 17:17
Summary
Red Hat Security Advisory: chromium-browser security update
Notes
Topic
Updated chromium-browser packages that fix two security issues are now
available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details
Chromium is an open-source web browser, powered by WebKit (Blink).
Two flaws were found in the processing of malformed web content. A web page
containing malicious content could cause Chromium to crash, execute
arbitrary code, or disclose sensitive information when visited by the
victim. (CVE-2015-6792)
All Chromium users should upgrade to these updated packages, which
contain Chromium version 47.0.2526.106, which corrects these issues.
After installing the update, Chromium must be restarted for the changes
to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated chromium-browser packages that fix two security issues are now\navailable for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Chromium is an open-source web browser, powered by WebKit (Blink).\n\nTwo flaws were found in the processing of malformed web content. A web page\ncontaining malicious content could cause Chromium to crash, execute\narbitrary code, or disclose sensitive information when visited by the\nvictim. (CVE-2015-6792)\n\nAll Chromium users should upgrade to these updated packages, which\ncontain Chromium version 47.0.2526.106, which corrects these issues.\nAfter installing the update, Chromium must be restarted for the changes\nto take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:2665",
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"category": "external",
"summary": "1291989",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1291989"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2665.json"
}
],
"title": "Red Hat Security Advisory: chromium-browser security update",
"tracking": {
"current_release_date": "2024-11-14T17:17:37+00:00",
"generator": {
"date": "2024-11-14T17:17:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.0"
}
},
"id": "RHSA-2015:2665",
"initial_release_date": "2015-12-17T16:15:32+00:00",
"revision_history": [
{
"date": "2015-12-17T16:15:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-12-17T16:15:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-14T17:17:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product_id": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser-debuginfo@47.0.2526.106-1.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product_id": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser@47.0.2526.106-1.el6?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product_id": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser@47.0.2526.106-1.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product_id": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/chromium-browser-debuginfo@47.0.2526.106-1.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
},
"product_reference": "chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-6792",
"discovery_date": "2015-12-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1291989"
}
],
"notes": [
{
"category": "description",
"text": "The MIDI subsystem in Google Chrome before 47.0.2526.106 does not properly handle the sending of data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, related to midi_manager.cc, midi_manager_alsa.cc, and midi_manager_mac.cc, a different vulnerability than CVE-2015-8664.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "chromium-browser: Fixes from internal audits and fuzzing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-6792"
},
{
"category": "external",
"summary": "RHBZ#1291989",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1291989"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-6792",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-6792"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-6792",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-6792"
},
{
"category": "external",
"summary": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
}
],
"release_date": "2015-12-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-12-17T16:15:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "chromium-browser: Fixes from internal audits and fuzzing"
},
{
"cve": "CVE-2015-8664",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2015-12-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1294768"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "chromium-browser: Use-After-free in MidiHost",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-8664"
},
{
"category": "external",
"summary": "RHBZ#1294768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-8664",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8664"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664"
}
],
"release_date": "2015-12-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-12-17T16:15:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:2665"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-0:47.0.2526.106-1.el6.x86_64",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.i686",
"6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:47.0.2526.106-1.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "chromium-browser: Use-After-free in MidiHost"
}
]
}
ghsa-4wq5-7mhx-9xh5
Vulnerability from github
Published
2022-05-17 03:25
Modified
2022-05-17 03:25
Severity ?
VLAI Severity ?
Details
Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.
{
"affected": [],
"aliases": [
"CVE-2015-8664"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2015-12-24T03:59:00Z",
"severity": "HIGH"
},
"details": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.",
"id": "GHSA-4wq5-7mhx-9xh5",
"modified": "2022-05-17T03:25:04Z",
"published": "2022-05-17T03:25:04Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8664"
},
{
"type": "WEB",
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"type": "WEB",
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"type": "WEB",
"url": "https://codereview.chromium.org/1498903003"
},
{
"type": "WEB",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/79686"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1034491"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-2860-1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
fkie_cve-2015-8664
Vulnerability from fkie_nvd
Published
2015-12-24 03:59
Modified
2025-04-12 10:46
Severity ?
Summary
Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"matchCriteriaId": "27BA9DAB-BD1B-48EC-A622-AA702BE4FA0E",
"versionEndIncluding": "47.0.2526.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792."
},
{
"lang": "es",
"value": "Desbordamiento de entero en la funci\u00f3n the WebCursor::Deserialize en content/common/cursors/webcursor.cc en Google Chrome en versiones anteriores a la 47.0.2526.106 permite a atacantes remotos causar una denegaci\u00f3n de servicio o posiblemente tener otro impacto no especificado a trav\u00e9s de un array de pixel RGBA con dimensiones manipuladas, una vulnerabilidad diferente a CVE-2015-6792."
}
],
"id": "CVE-2015-8664",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2015-12-24T03:59:01.143",
"references": [
{
"source": "chrome-cve-admin@google.com",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "http://www.securityfocus.com/bid/79686"
},
{
"source": "chrome-cve-admin@google.com",
"url": "http://www.securitytracker.com/id/1034491"
},
{
"source": "chrome-cve-admin@google.com",
"url": "http://www.ubuntu.com/usn/USN-2860-1"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://codereview.chromium.org/1498903003"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/79686"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1034491"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2860-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://codereview.chromium.org/1498903003"
}
],
"sourceIdentifier": "chrome-cve-admin@google.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-189"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2015-8664
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-8664",
"description": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.",
"id": "GSD-2015-8664",
"references": [
"https://access.redhat.com/errata/RHSA-2015:2665",
"https://ubuntu.com/security/CVE-2015-8664"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-8664"
],
"details": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.",
"id": "GSD-2015-8664",
"modified": "2023-12-13T01:20:03.706057Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@google.com",
"ID": "CVE-2015-8664",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"refsource": "CONFIRM",
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"name": "1034491",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1034491"
},
{
"name": "https://code.google.com/p/chromium/issues/detail?id=569486",
"refsource": "CONFIRM",
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"name": "https://code.google.com/p/chromium/issues/detail?id=565023",
"refsource": "CONFIRM",
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"name": "https://codereview.chromium.org/1498903003",
"refsource": "CONFIRM",
"url": "https://codereview.chromium.org/1498903003"
},
{
"name": "USN-2860-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2860-1"
},
{
"name": "79686",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/79686"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "47.0.2526.80",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@google.com",
"ID": "CVE-2015-8664"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-189"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://code.google.com/p/chromium/issues/detail?id=565023",
"refsource": "CONFIRM",
"tags": [],
"url": "https://code.google.com/p/chromium/issues/detail?id=565023"
},
{
"name": "https://codereview.chromium.org/1498903003",
"refsource": "CONFIRM",
"tags": [],
"url": "https://codereview.chromium.org/1498903003"
},
{
"name": "https://code.google.com/p/chromium/issues/detail?id=569486",
"refsource": "CONFIRM",
"tags": [],
"url": "https://code.google.com/p/chromium/issues/detail?id=569486"
},
{
"name": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html"
},
{
"name": "79686",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/79686"
},
{
"name": "1034491",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1034491"
},
{
"name": "USN-2860-1",
"refsource": "UBUNTU",
"tags": [],
"url": "http://www.ubuntu.com/usn/USN-2860-1"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": true,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2016-12-07T18:29Z",
"publishedDate": "2015-12-24T03:59Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…