CVE-2016-5134 (retired)

Priority
Description
net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google
Chrome before 52.0.2743.82 does not ensure that URL information is
restricted to a scheme, host, and port, which allows remote attackers to
discover credentials by operating a server with a PAC script, a related
issue to CVE-2016-3763.
Package
Upstream:released (52.0.2743.82)
Ubuntu 14.04 LTS (Trusty Tahr):released (52.0.2743.116-0ubuntu0.14.04.1.1134)
Ubuntu 16.04 LTS (Xenial Xerus):released (52.0.2743.116-0ubuntu0.16.04.1.1250)
Package
Upstream:released (1.16.5)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.16.5-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.16.5-0ubuntu0.16.04.1)
More Information

Updated: 2019-03-26 12:21:53 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)