CVE-2012-4906
Published: 13 September 2012
Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by obtaining credential data, a different vulnerability than CVE-2012-4903.
Notes
Author | Note |
---|---|
sbeattie | may be android only |
Priority
Status
Package | Release | Status |
---|---|---|
chromium-browser Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Released
(23.0.1271.97-0ubuntu0.10.04.1)
|
|
natty |
Ignored
(end of life)
|
|
oneiric |
Released
(23.0.1271.97-0ubuntu0.11.10.1)
|
|
precise |
Released
(20.0.1132.47~r144678-0ubuntu0.12.04.1)
|
|
quantal |
Not vulnerable
(22.0.1229.79~r158531-0ubuntu1)
|
|
upstream |
Needs triage
|