Описание
The MediaElementAudioSourceNode::process function in modules/webaudio/MediaElementAudioSourceNode.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy and obtain sensitive audio sample values via a crafted web site containing a media element.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 43.0.2357.81-0ubuntu1.1179 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [43.0.2357.81-0ubuntu0.14.04.1.1089]] |
| lucid | ignored | end of life |
| precise | ignored | |
| trusty | released | 43.0.2357.81-0ubuntu0.14.04.1.1089 |
| trusty/esm | DNE | trusty was released [43.0.2357.81-0ubuntu0.14.04.1.1089] |
| upstream | released | 42.0.2311.90 |
| utopic | released | 43.0.2357.81-0ubuntu0.14.10.1.1131 |
| vivid | released | 43.0.2357.81-0ubuntu0.15.04.1.1170 |
| wily | released | 43.0.2357.81-0ubuntu1.1179 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.7.7-0ubuntu0.15.04.1~ppa1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.6.5-0ubuntu0.14.04.1]] |
| lucid | DNE | |
| precise | DNE | |
| trusty | released | 1.6.5-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.6.5-0ubuntu0.14.04.1] |
| upstream | released | 1.6.5 |
| utopic | released | 1.6.5-0ubuntu0.14.10.1 |
| vivid | released | 1.6.5-0ubuntu0.15.04.1 |
| wily | released | 1.7.7-0ubuntu0.15.04.1~ppa1 |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
Связанные уязвимости
The MediaElementAudioSourceNode::process function in modules/webaudio/MediaElementAudioSourceNode.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy and obtain sensitive audio sample values via a crafted web site containing a media element.
The MediaElementAudioSourceNode::process function in modules/webaudio/MediaElementAudioSourceNode.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy and obtain sensitive audio sample values via a crafted web site containing a media element.
The MediaElementAudioSourceNode::process function in modules/webaudio/ ...
The MediaElementAudioSourceNode::process function in modules/webaudio/MediaElementAudioSourceNode.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy and obtain sensitive audio sample values via a crafted web site containing a media element.
Уязвимость браузера Google Chrome, позволяющая удаленному нарушителю получить доступ к значениям образцов аудио
4.3 Medium
CVSS2