Google Chrome extension subsystem same-origin Policy Bypass Vulnerability (CVE-2016-1696)
Google Chrome extension subsystem same-origin Policy Bypass Vulnerability (CVE-2016-1696)
Release date:
Updated on:
Affected Systems:
Google Chrome <51.0.2704.79
Description:
CVE (CAN) ID: CVE-2016-1696
Google Chrome is a Web browser tool developed by Google.
In versions earlier than Google Chrome 51.0.2704.79, the extended sub-system does not properly restrict access binding. A security vulnerability exists. Remote attackers can exploit this vulnerability to bypass the same-source policy.
<* Source: Google
*>
Suggestion:
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://googlechromereleases.blogspot.com/2016/06/stable-channel-update.html
Windows x64 Windows x86 Linux x64 deb Linux x 64 RPM MAC
Install 64-bit Google Chrome in Ubuntu 16.04
Install Flash Player Plug-ins for Chromium, Chrome, and Firefox in Ubuntu 16.04
Chrome Chinese font replacement in Ubuntu 16.04
This article permanently updates the link address: