Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-5107

Опубликовано: 27 окт. 2017
Источник: ubuntu
Приоритет: medium
CVSS2: 2.6
CVSS3: 5.3

Описание

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

РелизСтатусПримечание
artful

released

60.0.3112.78-0ubuntu1.1363
bionic

released

60.0.3112.78-0ubuntu1.1363
cosmic

released

60.0.3112.78-0ubuntu1.1363
devel

released

60.0.3112.78-0ubuntu1.1363
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [60.0.3112.78-0ubuntu0.14.04.1190]]
precise/esm

DNE

trusty

released

60.0.3112.78-0ubuntu0.14.04.1190
trusty/esm

DNE

trusty was released [60.0.3112.78-0ubuntu0.14.04.1190]
upstream

released

60.0.3112.78
vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [Ubuntu touch end-of-life]]
esm-infra/xenial

ignored

Ubuntu touch end-of-life
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [Ubuntu touch end-of-life]
upstream

needs-triage

Показывать по

Ссылки на источники

2.6 Low

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-5107

CVSS3: 4.3
redhat
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

nvd логотип

CVE-2017-5107

CVSS3: 5.3
nvd
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

debian логотип

CVE-2017-5107

CVSS3: 5.3
debian
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.7 ...

github логотип

GHSA-4679-hxq5-w394

CVSS3: 5.3
github
больше 3 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

2.6 Low

CVSS2

5.3 Medium

CVSS3