Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2011-0778

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

Related bugs and status

CVE-2011-0778 (Candidate) is related to these bugs:

Bug #814464: webkit 1.2.7 security update tracking bug

		In	Importance	Status
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu)	Undecided	Invalid
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu Lucid)	Medium	Fix Released
814464	webkit 1.2.7 security update tracking bug	webkit (Ubuntu Maverick)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://code.google.com...
CONFIRM: http://googlechromerel...
DEBIAN: DSA-2166
SECUNIA: 43368
VUPEN: ADV-2011-0408
SUSE: SUSE-SR:2011:009
DEBIAN: DSA-2188
OVAL: oval:org.mitre.oval:de...