Launchpad CVE tracker

CVE 2017-15420

Incorrect handling of back navigations in error pages in Navigation in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Related bugs and status

CVE-2017-15420 (Candidate) is related to these bugs:

Bug #1652110: Chromium 55+ doesn't support Widevine library

Summary				In	Importance	Status
	1652110	Chromium 55+ doesn't support Widevine library		chromium-browser (Ubuntu)	High	Fix Released

Bug #1738149: [snap] Cannot use libwidevinecdm.so to play back DRM-encrypted video

Summary				In	Importance	Status
	1738149	[snap] Cannot use libwidevinecdm.so to play back DRM-encrypted video		chromium-browser (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://chromereleases...
MISC: https://crbug.com/777419
DEBIAN: DSA-4064
DEBIAN: DSA-4103
GENTOO: GLSA-201801-03
REDHAT: RHSA-2017:3401
SECTRACK: 1040282

Launchpad.net

CVE 2017-15420

Related bugs and status

Related bugs

References