CVE-2016-5134

Priority
Description
net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google
Chrome before 52.0.2743.82 does not ensure that URL information is
restricted to a scheme, host, and port, which allows remote attackers to
discover credentials by operating a server with a PAC script, a related
issue to CVE-2016-3763.
Package
Upstream:released (52.0.2743.82)
Ubuntu 14.04 LTS (Trusty Tahr):released (52.0.2743.116-0ubuntu0.14.04.1.1134)
Ubuntu 16.04 LTS (Xenial Xerus):released (52.0.2743.116-0ubuntu0.16.04.1.1250)
Package
Upstream:released (1.16.5)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.16.5-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.16.5-0ubuntu0.16.04.1)
More Information

Updated: 2019-01-14 22:26:58 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)