USN-2895-1

Advisory lineage Upstream: 4 Downstream: 0

Upstream

CVE-2016-1623 CVE-2016-1624 UBUNTU-CVE-2016-1623 UBUNTU-CVE-2016-1624

Published: 18 Feb 2016, 19:19

Last modified:04 Feb 2026, 04:27

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

18 Feb 2016, 19:19

Published

Vulnerability first disclosed

04 Feb 2026, 04:27

Last Modified

Vulnerability information updated

Description

oxide-qt vulnerabilities The DOM implementation in Chromium did not properly restrict frame-attach operations from occurring during or after frame-detach operations. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin restrictions. (CVE-2016-1623) An integer underflow was discovered in Brotli. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking the program. (CVE-2016-1624)

Affected Systems

ubuntu•oxide-qt
< 1.12.6-0ubuntu0.14.04.1

USN-2895-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)