QwikSec

Security Database

CVE

CWE

Training

CVE-2016-5135

Published: Jul 23, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

WebKit/Source/core/html/parser/HTMLPreloadScanner.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not consider referrer-policy information inside an HTML document during a preload request, which allows remote attackers to bypass the Content Security Policy (CSP) protection mechanism via a crafted web site, as demonstrated by a "Content-Security-Policy: referrer origin-when-cross-origin" header that overrides a "<META name='referrer' content='no-referrer'>" element.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2016:1868

vendor-advisory

x_refsource_SUSE

https://crbug.com/605451

x_refsource_CONFIRM

openSUSE-SU-2016:1869

vendor-advisory

x_refsource_SUSE

vdb-entry

x_refsource_BID

http://googlechromereleases.blogspot.com/2016/07/stable-channel-update.html

x_refsource_CONFIRM

https://codereview.chromium.org/1913983002

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

openSUSE-SU-2016:1918

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_GENTOO

openSUSE-SU-2016:1865

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_SECTRACK

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.