Candidate: CVE-2010-0660
PublicDate: 2010-02-18 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0660
 http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html
Description:
 Google Chrome before 4.0.249.78 sends an https URL in the Referer header of
 an http request in certain circumstances involving https to http
 redirection, which allows remote HTTP servers to obtain potentially
 sensitive information via standard HTTP logging.
Ubuntu-Description:
Notes:
Bugs:
 http://code.google.com/p/chromium/issues/detail?id=29920
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_chromium-browser:
 upstream: http://src.chromium.org/viewvc/chrome?view=rev&revision=34751
 upstream: http://src.chromium.org/viewvc/chrome?view=rev&revision=34763
upstream_chromium-browser: needs-triage
dapper_chromium-browser: DNE
hardy_chromium-browser: DNE
intrepid_chromium-browser: DNE
jaunty_chromium-browser: DNE
karmic_chromium-browser: DNE
lucid_chromium-browser: not-affected (5.0.342.9~r43360-0ubuntu2)
devel_chromium-browser: not-affected (5.0.375.38~r46659-0ubuntu1)