Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2011-3898

Google Chrome before 15.0.874.120, when Java Runtime Environment (JRE) 7 is used, does not request user confirmation before applet execution begins, which allows remote attackers to have an unspecified impact via a crafted applet.

Related bugs and status

CVE-2011-3898 (Candidate) is related to these bugs:

Bug #889711: Update to 15.0.874.120

		In	Importance	Status
889711	Update to 15.0.874.120	chromium-browser (Ubuntu)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Lucid)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Maverick)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Oneiric)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Precise)	High	Fix Released
889711	Update to 15.0.874.120	chromium-browser (Ubuntu Natty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://code.google.com...
CONFIRM: http://googlechromerel...
SECUNIA: 46933
OVAL: oval:org.mitre.oval:de...