CVE-2015-1254 (retired)

Priority
Description
core/dom/Document.cpp in Blink, as used in Google Chrome before
43.0.2357.65, enables the inheritance of the designMode attribute, which
allows remote attackers to bypass the Same Origin Policy by leveraging the
availability of editing.
Package
Upstream:released (43.0.2357.65)
Ubuntu 14.04 LTS (Trusty Tahr):released (43.0.2357.81-0ubuntu0.14.04.1.1089)
Ubuntu 16.04 LTS (Xenial Xerus):released (43.0.2357.81-0ubuntu1.1179)
Package
Upstream:released (1.7.8)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.7.8-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.7.8-0ubuntu1)
More Information

Updated: 2019-03-26 12:14:33 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)