CVE-2016-1670

Priority
Description
Race condition in the ResourceDispatcherHostImpl::BeginRequest function in
content/browser/loader/resource_dispatcher_host_impl.cc in Google Chrome
before 50.0.2661.102 allows remote attackers to make arbitrary HTTP
requests by leveraging access to a renderer process and reusing a request
ID.
Notes
Package
Upstream:released (50.0.2661.102)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [50.0.2661.102-0ubuntu0.14.04.1.1117])
Ubuntu 16.04 LTS (Xenial Xerus):released (50.0.2661.102-0ubuntu0.16.04.1.1237)
Package
Upstream:released (1.14.9)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1.14.9-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (1.14.9-0ubuntu0.16.04.1)
More Information

Updated: 2019-12-05 18:44:10 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)