USN-3236-1
Advisory lineage Upstream: 22 Downstream: 0
Published: 29 Mar 2017, 20:24
Last modified:22 Apr 2026, 09:33
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
29 Mar 2017, 20:24
Published
Vulnerability first disclosed
22 Apr 2026, 09:33
Last Modified
Vulnerability information updated
Description
oxide-qt vulnerabilities Multiple vulnerabilities were discovered in Chromium. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to obtain sensitive information, spoof application UI by causing the security status API or webview URL to indicate the wrong values, bypass security restrictions, cause a denial of service via application crash, or execute arbitrary code. (CVE-2017-5029, CVE-2017-5030, CVE-2017-5031, CVE-2017-5033, CVE-2017-5035, CVE-2017-5037, CVE-2017-5040, CVE-2017-5041, CVE-2017-5044, CVE-2017-5045, CVE-2017-5046)
Affected Systems
- ubuntu•oxide-qt
< 1.21.5-0ubuntu0.14.04.1 | < 1.21.5-0ubuntu0.16.04.1
References (12)
- https://ubuntu.com/security/notices/USN-3236-1
- https://ubuntu.com/security/CVE-2017-5029
- https://ubuntu.com/security/CVE-2017-5030
- https://ubuntu.com/security/CVE-2017-5031
- https://ubuntu.com/security/CVE-2017-5033
- https://ubuntu.com/security/CVE-2017-5035
- https://ubuntu.com/security/CVE-2017-5037
- https://ubuntu.com/security/CVE-2017-5040
- https://ubuntu.com/security/CVE-2017-5041
- https://ubuntu.com/security/CVE-2017-5044
- https://ubuntu.com/security/CVE-2017-5045
- https://ubuntu.com/security/CVE-2017-5046