CVE-2016-5204

Priority
Description
Leaking of an SVG shadow tree leading to corruption of the DOM tree in
Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux,
and 55.0.2883.84 for Android allowed a remote attacker to inject arbitrary
scripts or HTML (UXSS) via a crafted HTML page.
Notes
Package
Upstream:released (55.0.2883.75)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [58.0.3029.81-0ubuntu0.14.04.1172])
Ubuntu 16.04 LTS (Xenial Xerus):released (55.0.2883.87-0ubuntu0.16.04.1263)
Package
Upstream:released (1.19.4)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1.19.4-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):released (1.19.4-0ubuntu0.16.04.1)
More Information

Updated: 2020-03-18 22:45:22 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)