1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-12 15:47:28 +00:00
nixpkgs/pkgs/applications/networking/browsers
Herwig Hochleitner 2b29e40153 chromium: 65.0.3325.181 -> 66.0.3359.117
Critical CVE-2018-6085: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-28
Critical CVE-2018-6086: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-30
High CVE-2018-6087: Use after free in WebAssembly. Reported by Anonymous on 2018-02-20
High CVE-2018-6088: Use after free in PDFium. Reported by Anonymous on 2018-03-15
High CVE-2018-6089: Same origin policy bypass in Service Worker. Reported by Rob Wu on 2018-02-04
High CVE-2018-6090: Heap buffer overflow in Skia. Reported by ZhanJia Song on 2018-03-12
High CVE-2018-6091: Incorrect handling of plug-ins by Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-10-05
High CVE-2018-6092: Integer overflow in WebAssembly. Reported by Natalie Silvanovich of Google Project Zero on 2018-03-08
Medium CVE-2018-6093: Same origin bypass in Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-11-01
Medium CVE-2018-6094: Exploit hardening regression in Oilpan. Reported by Chris Rohlf on 2016-08-01
Medium CVE-2018-6095: Lack of meaningful user interaction requirement before file upload. Reported by Abdulrahman Alqabandi (@qab) on 2016-08-11
Medium CVE-2018-6096: Fullscreen UI spoof. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-10-19
Medium CVE-2018-6097: Fullscreen UI spoof. Reported by xisigr of Tencent's Xuanwu Lab on 2018-01-26
Medium CVE-2018-6098: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-03
Medium CVE-2018-6099: CORS bypass in ServiceWorker. Reported by Jun Kokatsu (@shhnjk) on 2018-02-03
Medium CVE-2018-6100: URL spoof in Omnibox. Reported by Lnyas Zhang on 2018-02-11
Medium CVE-2018-6101: Insufficient protection of remote debugging prototol in DevTools . Reported by Rob Wu on 2018-02-19
Medium CVE-2018-6102: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-20
Medium CVE-2018-6103: UI spoof in Permissions. Reported by Khalil Zhani on 2018-02-24
Medium CVE-2018-6104: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-03-08
Medium CVE-2018-6105: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-18
Medium CVE-2018-6106: Incorrect handling of promises in V8. Reported by lokihardt of Google Project Zero on 2018-01-25
Medium CVE-2018-6107: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-02
Medium CVE-2018-6108: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-27
Low CVE-2018-6109: Incorrect handling of files by FileAPI. Reported by Dominik Weber (@DoWeb_) on 2017-04-10
Low CVE-2018-6110: Incorrect handling of plaintext files via file:// . Reported by Wenxiang Qian (aka blastxiang) on 2017-10-24
Low CVE-2018-6111: Heap-use-after-free in DevTools. Reported by Khalil Zhani on 2017-11-02
Low CVE-2018-6112: Incorrect URL handling in DevTools. Reported by Rob Wu on 2017-12-29
Low CVE-2018-6113: URL spoof in Navigation. Reported by Khalil Zhani on 2018-01-25
Low CVE-2018-6114: CSP bypass. Reported by Lnyas Zhang on 2018-02-13
Low CVE-2018-6115: SmartScreen bypass in downloads. Reported by James Feher on 2018-03-07
Low CVE-2018-6116: Incorrect low memory handling in WebAssembly. Reported by Jin from Chengdu Security Response Center of Qihoo 360 Technology Co. Ltd. on 2018-03-15
Low CVE-2018-6117: Confusing autofill settings. Reported by Spencer Dailey on 2018-03-15
Low CVE-2018-6084: Incorrect use of Distributed Objects in Google Software Updater on MacOS. Reported by Ian Beer of Google Project Zero on 2018-03-15
2018-04-21 14:57:45 +02:00
..
arora
chromium chromium: 65.0.3325.181 -> 66.0.3359.117 2018-04-21 14:57:45 +02:00
conkeror conkeror: 1.0.3 -> 1.0.4 2018-03-03 14:19:39 +11:00
dillo
elinks
eolie eolie: fix build 2018-03-22 07:48:13 +01:00
falkon falkon: 2.1.99.1 -> 3.0.0 2018-03-05 14:50:05 +08:00
firefox firefox: fix wrapper to make proper symlink to icon 2018-04-07 01:00:42 +09:00
firefox-bin firefox-bin: add hint on how to update 2018-04-16 11:38:04 +01:00
google-chrome chromium, google-chrome: fix escaping of commandLineArgs 2018-03-06 14:56:07 +00:00
jumanji tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
links2 links: 2.14 -> 2.15 2018-03-25 17:46:46 -07:00
luakit luakit: init at 2018.08.10 2018-03-18 12:17:59 +01:00
lynx
midori tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
mozilla-plugins flashplayer: 29.0.0.113 -> 29.0.0.140 2018-04-10 21:14:20 +09:00
opera
otter otter-browser: 0.9.94 -> 0.9.96 (#37239) 2018-04-08 10:00:05 +02:00
palemoon palemoon: 27.8.0 -> 27.8.3 2018-03-31 00:23:07 -07:00
qutebrowser qutebrowser: 1.2.0 -> 1.2.1 2018-03-30 16:08:11 -07:00
surf tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
tor-browser-bundle tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
tor-browser-bundle-bin tor-browser-bundle-bin: 7.5.2 -> 7.5.3 2018-03-27 18:10:58 +02:00
uzbl tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
vimb tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
vimprobable2 tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
vivaldi tree-wide: autorename gnome packages to use dashes 2018-02-25 17:41:16 +01:00
w3m w3m: Enable cross-compilation 2018-02-13 09:44:26 -06:00