From d227eaaf0ebe4bf8e250f3c03c755e795ab3da4f Mon Sep 17 00:00:00 2001 From: "Andrew R. Whalley" Date: Mon, 7 Jan 2019 18:12:23 -0800 Subject: [PATCH] Fix version for Chrome 66 --- 2018/6xxx/CVE-2018-6084.json | 4 ++-- 2018/6xxx/CVE-2018-6085.json | 4 ++-- 2018/6xxx/CVE-2018-6086.json | 4 ++-- 2018/6xxx/CVE-2018-6087.json | 4 ++-- 2018/6xxx/CVE-2018-6088.json | 4 ++-- 2018/6xxx/CVE-2018-6089.json | 4 ++-- 2018/6xxx/CVE-2018-6090.json | 4 ++-- 2018/6xxx/CVE-2018-6091.json | 4 ++-- 2018/6xxx/CVE-2018-6092.json | 4 ++-- 2018/6xxx/CVE-2018-6093.json | 4 ++-- 2018/6xxx/CVE-2018-6094.json | 4 ++-- 2018/6xxx/CVE-2018-6095.json | 4 ++-- 2018/6xxx/CVE-2018-6096.json | 4 ++-- 2018/6xxx/CVE-2018-6097.json | 4 ++-- 2018/6xxx/CVE-2018-6098.json | 4 ++-- 2018/6xxx/CVE-2018-6099.json | 4 ++-- 2018/6xxx/CVE-2018-6100.json | 4 ++-- 2018/6xxx/CVE-2018-6101.json | 4 ++-- 2018/6xxx/CVE-2018-6102.json | 4 ++-- 2018/6xxx/CVE-2018-6103.json | 4 ++-- 2018/6xxx/CVE-2018-6104.json | 4 ++-- 2018/6xxx/CVE-2018-6105.json | 4 ++-- 2018/6xxx/CVE-2018-6106.json | 4 ++-- 2018/6xxx/CVE-2018-6107.json | 4 ++-- 2018/6xxx/CVE-2018-6108.json | 4 ++-- 2018/6xxx/CVE-2018-6109.json | 4 ++-- 2018/6xxx/CVE-2018-6110.json | 4 ++-- 2018/6xxx/CVE-2018-6111.json | 4 ++-- 2018/6xxx/CVE-2018-6112.json | 4 ++-- 2018/6xxx/CVE-2018-6113.json | 4 ++-- 2018/6xxx/CVE-2018-6114.json | 4 ++-- 2018/6xxx/CVE-2018-6115.json | 4 ++-- 2018/6xxx/CVE-2018-6116.json | 4 ++-- 2018/6xxx/CVE-2018-6117.json | 4 ++-- 2018/6xxx/CVE-2018-6151.json | 4 ++-- 2018/6xxx/CVE-2018-6152.json | 4 ++-- 36 files changed, 72 insertions(+), 72 deletions(-) diff --git a/2018/6xxx/CVE-2018-6084.json b/2018/6xxx/CVE-2018-6084.json index c3114b0a108..b6b8589872c 100644 --- a/2018/6xxx/CVE-2018-6084.json +++ b/2018/6xxx/CVE-2018-6084.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Insufficiently sanitized distributed objects in Updater in Google Chrome on macOS prior to 66.0.3359.106 allowed a local attacker to execute arbitrary code via an executable file." + "value": "Insufficiently sanitized distributed objects in Updater in Google Chrome on macOS prior to 66.0.3359.117 allowed a local attacker to execute arbitrary code via an executable file." } ] } diff --git a/2018/6xxx/CVE-2018-6085.json b/2018/6xxx/CVE-2018-6085.json index 4ba88fe29d7..540a1e60cd5 100644 --- a/2018/6xxx/CVE-2018-6085.json +++ b/2018/6xxx/CVE-2018-6085.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Re-entry of a destructor in Networking Disk Cache in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code via a crafted HTML page." + "value" : "Re-entry of a destructor in Networking Disk Cache in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6086.json b/2018/6xxx/CVE-2018-6086.json index 3417cc5e528..c6f4632802b 100644 --- a/2018/6xxx/CVE-2018-6086.json +++ b/2018/6xxx/CVE-2018-6086.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A double-eviction in the Incognito mode cache that lead to a user-after-free in Networking Disk Cache in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code via a crafted HTML page." + "value" : "A double-eviction in the Incognito mode cache that lead to a user-after-free in Networking Disk Cache in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6087.json b/2018/6xxx/CVE-2018-6087.json index eecbc7eb52c..6f5fb75edc0 100644 --- a/2018/6xxx/CVE-2018-6087.json +++ b/2018/6xxx/CVE-2018-6087.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A use-after-free in WebAssembly in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page." + "value" : "A use-after-free in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6088.json b/2018/6xxx/CVE-2018-6088.json index d72dea62dc8..490ae38d46a 100644 --- a/2018/6xxx/CVE-2018-6088.json +++ b/2018/6xxx/CVE-2018-6088.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "An iterator-invalidation bug in PDFium in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file." + "value" : "An iterator-invalidation bug in PDFium in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file." } ] }, diff --git a/2018/6xxx/CVE-2018-6089.json b/2018/6xxx/CVE-2018-6089.json index e69f4a6bd9b..803541a7441 100644 --- a/2018/6xxx/CVE-2018-6089.json +++ b/2018/6xxx/CVE-2018-6089.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A lack of CORS checks, after a Service Worker redirected to a cross-origin PDF, in Service Worker in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to leak limited cross-origin data via a crafted HTML page." + "value" : "A lack of CORS checks, after a Service Worker redirected to a cross-origin PDF, in Service Worker in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak limited cross-origin data via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6090.json b/2018/6xxx/CVE-2018-6090.json index 8bc29095fa5..3aad7bd26c1 100644 --- a/2018/6xxx/CVE-2018-6090.json +++ b/2018/6xxx/CVE-2018-6090.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "An integer overflow that lead to a heap buffer-overflow in Skia in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page." + "value" : "An integer overflow that lead to a heap buffer-overflow in Skia in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6091.json b/2018/6xxx/CVE-2018-6091.json index 142bb7ebdea..76e69df31a3 100644 --- a/2018/6xxx/CVE-2018-6091.json +++ b/2018/6xxx/CVE-2018-6091.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Service Workers can intercept any request made by an or tag in Fetch API in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to leak cross-origin data via a crafted HTML page." + "value": "Service Workers can intercept any request made by an or tag in Fetch API in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6092.json b/2018/6xxx/CVE-2018-6092.json index 45a74acdc1b..690cdcd5c43 100644 --- a/2018/6xxx/CVE-2018-6092.json +++ b/2018/6xxx/CVE-2018-6092.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "An integer overflow on 32-bit systems in WebAssembly in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page." + "value" : "An integer overflow on 32-bit systems in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6093.json b/2018/6xxx/CVE-2018-6093.json index 5b7c9711418..059c746e39c 100644 --- a/2018/6xxx/CVE-2018-6093.json +++ b/2018/6xxx/CVE-2018-6093.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Insufficient origin checks in Blink in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to leak cross-origin data via a crafted HTML page." + "value": "Insufficient origin checks in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6094.json b/2018/6xxx/CVE-2018-6094.json index b0cfd57b722..d64cac6a128 100644 --- a/2018/6xxx/CVE-2018-6094.json +++ b/2018/6xxx/CVE-2018-6094.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Inline metadata in GarbageCollection in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page." + "value" : "Inline metadata in GarbageCollection in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6095.json b/2018/6xxx/CVE-2018-6095.json index a4eeabe2b33..7e63af1b047 100644 --- a/2018/6xxx/CVE-2018-6095.json +++ b/2018/6xxx/CVE-2018-6095.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Inappropriate dismissal of file picker on keyboard events in Blink in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to read local files via a crafted HTML page." + "value" : "Inappropriate dismissal of file picker on keyboard events in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to read local files via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6096.json b/2018/6xxx/CVE-2018-6096.json index 6bbbf078e4c..61601b4d6c4 100644 --- a/2018/6xxx/CVE-2018-6096.json +++ b/2018/6xxx/CVE-2018-6096.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "A JavaScript focused window could overlap the fullscreen notification in Fullscreen in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to obscure the full screen warning via a crafted HTML page." + "value": "A JavaScript focused window could overlap the fullscreen notification in Fullscreen in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to obscure the full screen warning via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6097.json b/2018/6xxx/CVE-2018-6097.json index f709c8786f1..0cace648fff 100644 --- a/2018/6xxx/CVE-2018-6097.json +++ b/2018/6xxx/CVE-2018-6097.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Incorrect handling of asynchronous methods in Fullscreen in Google Chrome on macOS prior to 66.0.3359.106 allowed a remote attacker to enter full screen without showing a warning via a crafted HTML page." + "value": "Incorrect handling of asynchronous methods in Fullscreen in Google Chrome on macOS prior to 66.0.3359.117 allowed a remote attacker to enter full screen without showing a warning via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6098.json b/2018/6xxx/CVE-2018-6098.json index 5b844bb63f1..34d3caf96b6 100644 --- a/2018/6xxx/CVE-2018-6098.json +++ b/2018/6xxx/CVE-2018-6098.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." + "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." } ] }, diff --git a/2018/6xxx/CVE-2018-6099.json b/2018/6xxx/CVE-2018-6099.json index 12e2c1f655f..1a4d54ffdc8 100644 --- a/2018/6xxx/CVE-2018-6099.json +++ b/2018/6xxx/CVE-2018-6099.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A lack of CORS checks in Blink in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to leak limited cross-origin data via a crafted HTML page." + "value" : "A lack of CORS checks in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak limited cross-origin data via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6100.json b/2018/6xxx/CVE-2018-6100.json index a0fde68941c..20824a26001 100644 --- a/2018/6xxx/CVE-2018-6100.json +++ b/2018/6xxx/CVE-2018-6100.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Incorrect handling of confusable characters in URL Formatter in Google Chrome on macOS prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." + "value": "Incorrect handling of confusable characters in URL Formatter in Google Chrome on macOS prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." } ] } diff --git a/2018/6xxx/CVE-2018-6101.json b/2018/6xxx/CVE-2018-6101.json index e3d1b6e3b81..2ec7f04029a 100644 --- a/2018/6xxx/CVE-2018-6101.json +++ b/2018/6xxx/CVE-2018-6101.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if the user is running a remote DevTools debugging server." + "value" : "A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if the user is running a remote DevTools debugging server." } ] }, diff --git a/2018/6xxx/CVE-2018-6102.json b/2018/6xxx/CVE-2018-6102.json index e14e3a33ec5..f42b265345e 100644 --- a/2018/6xxx/CVE-2018-6102.json +++ b/2018/6xxx/CVE-2018-6102.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Missing confusable characters in Internationalization in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name." + "value" : "Missing confusable characters in Internationalization in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name." } ] }, diff --git a/2018/6xxx/CVE-2018-6103.json b/2018/6xxx/CVE-2018-6103.json index 1e8b9557495..fcb85531292 100644 --- a/2018/6xxx/CVE-2018-6103.json +++ b/2018/6xxx/CVE-2018-6103.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A stagnant permission prompt in Prompts in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to bypass permission policy via a crafted HTML page." + "value" : "A stagnant permission prompt in Prompts in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass permission policy via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6104.json b/2018/6xxx/CVE-2018-6104.json index 144c1dcb3bf..409c4d3e101 100644 --- a/2018/6xxx/CVE-2018-6104.json +++ b/2018/6xxx/CVE-2018-6104.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." + "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." } ] }, diff --git a/2018/6xxx/CVE-2018-6105.json b/2018/6xxx/CVE-2018-6105.json index c4eae57fdfb..0b31b417251 100644 --- a/2018/6xxx/CVE-2018-6105.json +++ b/2018/6xxx/CVE-2018-6105.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Incorrect handling of confusable characters in Omnibox in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." + "value" : "Incorrect handling of confusable characters in Omnibox in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." } ] }, diff --git a/2018/6xxx/CVE-2018-6106.json b/2018/6xxx/CVE-2018-6106.json index 23713cbf1c7..c9dcedf1475 100644 --- a/2018/6xxx/CVE-2018-6106.json +++ b/2018/6xxx/CVE-2018-6106.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "An asynchronous generator may return an incorrect state in V8 in Google Chrome prior to 66.0.3359.106 allowing a remote attacker to potentially exploit object corruption via a crafted HTML page." + "value": "An asynchronous generator may return an incorrect state in V8 in Google Chrome prior to 66.0.3359.117 allowing a remote attacker to potentially exploit object corruption via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6107.json b/2018/6xxx/CVE-2018-6107.json index 0c778d739bd..738c6b5fbd3 100644 --- a/2018/6xxx/CVE-2018-6107.json +++ b/2018/6xxx/CVE-2018-6107.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." + "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name." } ] }, diff --git a/2018/6xxx/CVE-2018-6108.json b/2018/6xxx/CVE-2018-6108.json index 2f45453fd91..4e6cc1ded42 100644 --- a/2018/6xxx/CVE-2018-6108.json +++ b/2018/6xxx/CVE-2018-6108.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted HTML page." + "value" : "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6109.json b/2018/6xxx/CVE-2018-6109.json index 83f4edd59f2..ee8dc2a61bb 100644 --- a/2018/6xxx/CVE-2018-6109.json +++ b/2018/6xxx/CVE-2018-6109.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "readAsText() can indefinitely read the file picked by the user, rather than only once at the time the file is picked in File API in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to access data on the user file system without explicit consent via a crafted HTML page." + "value": "readAsText() can indefinitely read the file picked by the user, rather than only once at the time the file is picked in File API in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to access data on the user file system without explicit consent via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6110.json b/2018/6xxx/CVE-2018-6110.json index 5af29cfd7c1..a4091917428 100644 --- a/2018/6xxx/CVE-2018-6110.json +++ b/2018/6xxx/CVE-2018-6110.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Parsing documents as HTML in Downloads in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to cause Chrome to execute scripts via a local non-HTML page." + "value": "Parsing documents as HTML in Downloads in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to cause Chrome to execute scripts via a local non-HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6111.json b/2018/6xxx/CVE-2018-6111.json index f2c2235e85e..c88592901a1 100644 --- a/2018/6xxx/CVE-2018-6111.json +++ b/2018/6xxx/CVE-2018-6111.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "An object lifetime issue in the developer tools network handler in Google Chrome prior to 66.0.3359.106 allowed a local attacker to execute arbitrary code via a crafted HTML page." + "value": "An object lifetime issue in the developer tools network handler in Google Chrome prior to 66.0.3359.117 allowed a local attacker to execute arbitrary code via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6112.json b/2018/6xxx/CVE-2018-6112.json index 6d45fa88647..99681e9ad9c 100644 --- a/2018/6xxx/CVE-2018-6112.json +++ b/2018/6xxx/CVE-2018-6112.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Making URLs clickable and allowing them to be styled in DevTools in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page." + "value": "Making URLs clickable and allowing them to be styled in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6113.json b/2018/6xxx/CVE-2018-6113.json index 39a4440c55d..7c11ccfcb18 100644 --- a/2018/6xxx/CVE-2018-6113.json +++ b/2018/6xxx/CVE-2018-6113.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Improper handling of pending navigation entries in Navigation in Google Chrome on iOS prior to 66.0.3359.106 allowed a remote attacker to perform domain spoofing via a crafted HTML page." + "value": "Improper handling of pending navigation entries in Navigation in Google Chrome on iOS prior to 66.0.3359.117 allowed a remote attacker to perform domain spoofing via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6114.json b/2018/6xxx/CVE-2018-6114.json index f0ecac3d59a..b0234bcb3bd 100644 --- a/2018/6xxx/CVE-2018-6114.json +++ b/2018/6xxx/CVE-2018-6114.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Incorrect enforcement of CSP for tags in Blink in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to bypass content security policy via a crafted HTML page." + "value": "Incorrect enforcement of CSP for tags in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass content security policy via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6115.json b/2018/6xxx/CVE-2018-6115.json index 648cfa0c67e..82eeca7f75e 100644 --- a/2018/6xxx/CVE-2018-6115.json +++ b/2018/6xxx/CVE-2018-6115.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "Inappropriate setting of the SEE_MASK_FLAG_NO_UI flag in file downloads in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to potentially bypass OS malware checks via a crafted HTML page." + "value" : "Inappropriate setting of the SEE_MASK_FLAG_NO_UI flag in file downloads in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially bypass OS malware checks via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6116.json b/2018/6xxx/CVE-2018-6116.json index a4ac101faee..204a2c5cdb4 100644 --- a/2018/6xxx/CVE-2018-6116.json +++ b/2018/6xxx/CVE-2018-6116.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "A nullptr dereference in WebAssembly in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page." + "value" : "A nullptr dereference in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page." } ] }, diff --git a/2018/6xxx/CVE-2018-6117.json b/2018/6xxx/CVE-2018-6117.json index 84d3cbeaba9..24403e327d1 100644 --- a/2018/6xxx/CVE-2018-6117.json +++ b/2018/6xxx/CVE-2018-6117.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Confusing settings in Autofill in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page." + "value": "Confusing settings in Autofill in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page." } ] } diff --git a/2018/6xxx/CVE-2018-6151.json b/2018/6xxx/CVE-2018-6151.json index b51a8c487a0..6dd8e722abd 100644 --- a/2018/6xxx/CVE-2018-6151.json +++ b/2018/6xxx/CVE-2018-6151.json @@ -18,7 +18,7 @@ "version": { "version_data": [ { - "version_value": "66.0.3359.106", + "version_value": "66.0.3359.117", "version_affected": "<" } ] @@ -56,7 +56,7 @@ "description_data": [ { "lang": "eng", - "value": "Bad cast in DevTools in Google Chrome on Win, Linux, Mac, Chrome OS prior to 66.0.3359.106 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension." + "value": "Bad cast in DevTools in Google Chrome on Win, Linux, Mac, Chrome OS prior to 66.0.3359.117 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension." } ] } diff --git a/2018/6xxx/CVE-2018-6152.json b/2018/6xxx/CVE-2018-6152.json index 6c1057fc7f1..5ac1ffd3cf4 100644 --- a/2018/6xxx/CVE-2018-6152.json +++ b/2018/6xxx/CVE-2018-6152.json @@ -16,7 +16,7 @@ "version_data" : [ { "version_affected" : "<", - "version_value" : "66.0.3359.106" + "version_value" : "66.0.3359.117" } ] } @@ -35,7 +35,7 @@ "description_data" : [ { "lang" : "eng", - "value" : "The implementation of the Page.downloadBehavior backend unconditionally marked downloaded files as safe, regardless of file type in Google Chrome prior to 66.0.3359.106 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page and user interaction." + "value" : "The implementation of the Page.downloadBehavior backend unconditionally marked downloaded files as safe, regardless of file type in Google Chrome prior to 66.0.3359.117 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page and user interaction." } ] },