Описание
The PointerCompare function in codegen.cc in Seccomp-BPF, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly merge blocks, which might allow remote attackers to bypass intended sandbox restrictions by leveraging renderer access.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 35.0.1916.153-0ubuntu1~pkg1029 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [36.0.1985.125-0ubuntu1.14.04.0~pkg1029]] |
| lucid | ignored | end of life |
| precise | released | 36.0.1985.125-0ubuntu1.12.04.0~pkg897 |
| quantal | ignored | end of life |
| saucy | ignored | end of life |
| trusty | released | 36.0.1985.125-0ubuntu1.14.04.0~pkg1029 |
| trusty/esm | DNE | trusty was released [36.0.1985.125-0ubuntu1.14.04.0~pkg1029] |
| upstream | released | 34.0.1847.132 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected] |
| lucid | DNE | |
| precise | DNE | |
| quantal | DNE | |
| saucy | DNE | |
| trusty | not-affected | |
| trusty/esm | DNE | trusty was not-affected |
| upstream | not-affected |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The PointerCompare function in codegen.cc in Seccomp-BPF, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly merge blocks, which might allow remote attackers to bypass intended sandbox restrictions by leveraging renderer access.
The PointerCompare function in codegen.cc in Seccomp-BPF, as used in G ...
The PointerCompare function in codegen.cc in Seccomp-BPF, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly merge blocks, which might allow remote attackers to bypass intended sandbox restrictions by leveraging renderer access.
Уязвимость браузера Google Chrome, позволяющая злоумышленнику обойти ограничения песочницы
Уязвимость браузера Google Chrome, позволяющая злоумышленнику обойти ограничения песочницы
EPSS
7.5 High
CVSS2