Candidate: CVE-2012-2889
PublicDate: 2012-09-26 10:56:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2889
 http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html
 https://code.google.com/p/chromium/issues/detail?id=143439
Description:
 Cross-site scripting (XSS) vulnerability in Google Chrome before
 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML
 via vectors involving frames, aka "Universal XSS (UXSS)."
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Sergey Glazunov
Assigned-to:
CVSS: 

Patches_chromium-browser:
upstream_chromium-browser: released (22.0.1229.79)
hardy_chromium-browser: DNE
lucid_chromium-browser: released (3.0.1271.97-0ubuntu0.10.04.1)
natty_chromium-browser: ignored (reached end-of-life)
oneiric_chromium-browser: released (3.0.1271.97-0ubuntu0.11.10.1)
precise_chromium-browser: released (3.0.1271.97-0ubuntu0.12.04.1)
quantal_chromium-browser: released (3.0.1271.97-0ubuntu0.12.10.1)
devel_chromium-browser: not-affected (22.0.1229.79~r158531-0ubuntu1)