CVE-2013-2868

Priority
Medium
Description
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71
proceeds with sync operations for NPAPI extensions without checking for a
certain plugin permission setting, which might allow remote attackers to
trigger unwanted extension changes via unspecified vectors.
References
Bugs
Assigned-to
chad
Package
Upstream:released (28.0.1500.71)
Ubuntu 12.04 LTS (Precise Pangolin):released (28.0.1500.71-0ubuntu1.12.04.1)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:41:43 UTC (commit 9756)