CVE-2018-18358 (retired)

Priority
Description
Lack of special casing of localhost in WPAD files in Google Chrome prior to
71.0.3578.80 allowed an attacker on the local network segment to proxy
resources on localhost via a crafted WPAD file.
Package
Upstream:released (71.0.3578.80)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):ignored (no longer updated)
Ubuntu 16.04 LTS (Xenial Xerus):released (71.0.3578.80-0ubuntu0.16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (71.0.3578.80-0ubuntu0.18.04.1)
Ubuntu 18.10 (Cosmic Cuttlefish):released (71.0.3578.80-0ubuntu0.18.10.1)
Ubuntu 19.04 (Disco Dingo):released (71.0.3578.80-0ubuntu1)
More Information

Updated: 2019-03-26 12:27:18 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)