Launchpad.net

CVE 2011-3881

WebKit, as used in Google Chrome before 15.0.874.102 and Android before 4.4, allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors related to (1) the DOMWindow::clear function and use of a selection object, (2) the Object::GetRealNamedPropertyInPrototypeChain function and use of an __proto__ property, (3) the HTMLPlugInImageElement::allowedToLoadFrameURL function and use of a javascript: URL, (4) incorrect origins for XSLT-generated documents in the XSLTProcessor::createDocumentFromSource function, and (5) improper handling of synchronous frame loads in the ScriptController::executeIfJavaScriptURL function.

Related bugs and status

CVE-2011-3881 (Candidate) is related to these bugs:

Bug #881607: ERROR:nss_util.cc(397)] Error initializing NSS without a persistent database: libsoftokn3.so: cannot open shared object file: Permission denied

		In	Importance	Status
881607	ERROR:nss_util.cc(397)] Error initializing NSS without a persistent database: libsoftokn3.so: cannot open shared object file: Permission denied	chromium-browser (Ubuntu)	Medium	Fix Released
881607	ERROR:nss_util.cc(397)] Error initializing NSS without a persistent database: libsoftokn3.so: cannot open shared object file: Permission denied	Chromium Browser	Unknown	Unknown
881607	ERROR:nss_util.cc(397)] Error initializing NSS without a persistent database: libsoftokn3.so: cannot open shared object file: Permission denied	chromium-browser (Ubuntu Oneiric)	Medium	Fix Released
881607	ERROR:nss_util.cc(397)] Error initializing NSS without a persistent database: libsoftokn3.so: cannot open shared object file: Permission denied	chromium-browser (Ubuntu Precise)	Medium	Fix Released

Bug #881786: Update to 15.0.874.102/106

		In	Importance	Status
881786	Update to 15.0.874.102/106	chromium-browser (Ubuntu)	Medium	Fix Released
881786	Update to 15.0.874.102/106	chromium-browser (Ubuntu Lucid)	Medium	Fix Released
881786	Update to 15.0.874.102/106	chromium-browser (Ubuntu Maverick)	Medium	Fix Released
881786	Update to 15.0.874.102/106	chromium-browser (Ubuntu Oneiric)	Medium	Fix Released
881786	Update to 15.0.874.102/106	chromium-browser (Ubuntu Natty)	Medium	Fix Released
881786	Update to 15.0.874.102/106	chromium-browser (Ubuntu Precise)	Medium	Fix Released

Bug #889711: Update to 15.0.874.120

		In	Importance	Status
889711	Update to 15.0.874.120	chromium-browser (Ubuntu)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Lucid)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Maverick)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Oneiric)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Precise)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Natty)	High	Fix Released

Bug #914648: Update to 16.0.912.75

		In	Importance	Status
914648	Update to 16.0.912.75	chromium-browser (Ubuntu)	Medium	Fix Released
914648	Update to 16.0.912.75	chromium-browser (Ubuntu Lucid)	Medium	Fix Released
914648	Update to 16.0.912.75	chromium-browser (Ubuntu Maverick)	Medium	Fix Released
914648	Update to 16.0.912.75	chromium-browser (Ubuntu Precise)	Medium	Fix Released
914648	Update to 16.0.912.75	chromium-browser (Ubuntu Oneiric)	Medium	Fix Released
914648	Update to 16.0.912.75	chromium-browser (Ubuntu Natty)	Medium	Fix Released

Bug #923602: New upstream release 16.0.912.77

		In	Importance	Status
923602	New upstream release 16.0.912.77	chromium-browser (Ubuntu)	Medium	Fix Released
923602	New upstream release 16.0.912.77	chromium-browser (Ubuntu Lucid)	Medium	Fix Released
923602	New upstream release 16.0.912.77	chromium-browser (Ubuntu Maverick)	Medium	Fix Released
923602	New upstream release 16.0.912.77	chromium-browser (Ubuntu Natty)	Medium	Fix Released
923602	New upstream release 16.0.912.77	chromium-browser (Ubuntu Oneiric)	Medium	Fix Released
923602	New upstream release 16.0.912.77	chromium-browser (Ubuntu Precise)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-3881

Related bugs and status

Related bugs

References