Launchpad CVE tracker

CVE 2012-2889

Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML via vectors involving frames, aka "Universal XSS (UXSS)."

Related bugs and status

CVE-2012-2889 (Candidate) is related to these bugs:

Bug #1017971: Please update to 22.0.1229.94

Summary				In	Importance	Status
	1017971	Please update to 22.0.1229.94		chromium-browser (Ubuntu)	High	Fix Released

Bug #1084852: Chromium still tries to enable NEON on arm* builds when told not to

		In	Importance	Status
1084852	Chromium still tries to enable NEON on arm* builds when told not to	chromium-browser (Ubuntu)	High	Fix Released
1084852	Chromium still tries to enable NEON on arm* builds when told not to	Chromium Browser	Unknown	Unknown
1084852	Chromium still tries to enable NEON on arm* builds when told not to	chromium-browser (Ubuntu Oneiric)	Medium	Won't Fix
1084852	Chromium still tries to enable NEON on arm* builds when told not to	chromium-browser (Ubuntu Precise)	Medium	Fix Released
1084852	Chromium still tries to enable NEON on arm* builds when told not to	chromium-browser (Ubuntu Quantal)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-2889

References