Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-5069

Incorrect MIME type of XSS-Protection reports in Blink in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to circumvent Cross-Origin Resource Sharing checks via a crafted HTML page.

Related bugs and status

CVE-2017-5069 (Candidate) is related to these bugs:

Bug #1621753: Google Cast no longer finds Chromecast device

Summary				In	Importance	Status
	1621753	Google Cast no longer finds Chromecast device		chromium-browser (Ubuntu)	Medium	Fix Released

Bug #1669100: Please disable gconf in chromium-browser

Summary				In	Importance	Status
	1669100	Please disable gconf in chromium-browser		chromium-browser (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://chromereleases...
MISC: https://crbug.com/691726
GENTOO: GLSA-201705-02
BID: 97939
SECTRACK: 1038317
REDHAT: RHSA-2017:1124