CVE-2019-13697 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2019-13697 Interim 1 25 2025-02-17T02:01:27Z current 2021-05-30T14:29:42Z 2025-02-17T02:01:27Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2019-13697 Insufficient policy enforcement in performance APIs in Google Chrome prior to 77.0.3865.120 allowed a remote attacker to leak cross-origin data via a crafted HTML page. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GSPZQSDZGQFBUQLA7WYBAUPKK2Y6EENF/#GSPZQSDZGQFBUQLA7WYBAUPKK2Y6EENF E-Mail link for openSUSE-SU-2019:2311-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WDGS7K72VWLYZKLNYQR633AIAZQMRRDQ/#WDGS7K72VWLYZKLNYQR633AIAZQMRRDQ E-Mail link for openSUSE-SU-2019:2312-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UTJP34CRHCPQ4SMALRVOCLCX6GNKLQAD/#UTJP34CRHCPQ4SMALRVOCLCX6GNKLQAD E-Mail link for openSUSE-SU-2019:2313-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TEXAD7V7RA6CYOUJ6U6AYT536VE7BEXR/#TEXAD7V7RA6CYOUJ6U6AYT536VE7BEXR E-Mail link for openSUSE-SU-2019:2314-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QNJAWHUQKXHQBG3I7GI4ACW3CYHDJAHM/#QNJAWHUQKXHQBG3I7GI4ACW3CYHDJAHM E-Mail link for openSUSE-SU-2019:2447-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 12 SP3 SUSE Package Hub 15 SUSE Package Hub 15 SP1 openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed chromedriver-77.0.3865.120-bp150.237.1 chromedriver-77.0.3865.120-bp151.3.18.1 chromedriver-77.0.3865.120-lp150.245.1 chromedriver-77.0.3865.120-lp151.2.36.1 chromedriver-78.0.3904.87-10.1 chromedriver-93.0.4577.82-1.1 chromium-101.0.4951.64-bp154.1.2 chromium-77.0.3865.120-bp150.237.1 chromium-77.0.3865.120-bp151.3.18.1 chromium-77.0.3865.120-lp150.245.1 chromium-77.0.3865.120-lp151.2.36.1 chromium-78.0.3904.87-10.1 chromium-83.0.4103.97-lp152.1.1 chromium-90.0.4430.212-bp153.1.1 chromium-93.0.4577.82-1.1 ungoogled-chromium-113.0.5672.92-1.1 ungoogled-chromium-chromedriver-113.0.5672.92-1.1 chromedriver-78.0.3904.87-10.1 as a component of SUSE Package Hub 12 SP3 chromium-78.0.3904.87-10.1 as a component of SUSE Package Hub 12 SP3 chromedriver-77.0.3865.120-bp150.237.1 as a component of SUSE Package Hub 15 chromium-77.0.3865.120-bp150.237.1 as a component of SUSE Package Hub 15 chromedriver-77.0.3865.120-bp151.3.18.1 as a component of SUSE Package Hub 15 SP1 chromium-77.0.3865.120-bp151.3.18.1 as a component of SUSE Package Hub 15 SP1 chromedriver-77.0.3865.120-lp150.245.1 as a component of openSUSE Leap 15.0 chromium-77.0.3865.120-lp150.245.1 as a component of openSUSE Leap 15.0 chromedriver-77.0.3865.120-lp151.2.36.1 as a component of openSUSE Leap 15.1 chromium-77.0.3865.120-lp151.2.36.1 as a component of openSUSE Leap 15.1 chromium-83.0.4103.97-lp152.1.1 as a component of openSUSE Leap 15.2 chromium-90.0.4430.212-bp153.1.1 as a component of openSUSE Leap 15.3 chromium-101.0.4951.64-bp154.1.2 as a component of openSUSE Leap 15.4 chromedriver-93.0.4577.82-1.1 as a component of openSUSE Tumbleweed chromium-93.0.4577.82-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-chromedriver-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed Insufficient policy enforcement in performance APIs in Google Chrome prior to 77.0.3865.120 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2019-13697 SUSE Package Hub 12 SP3:chromedriver-78.0.3904.87-10.1 SUSE Package Hub 12 SP3:chromium-78.0.3904.87-10.1 SUSE Package Hub 15:chromedriver-77.0.3865.120-bp150.237.1 SUSE Package Hub 15:chromium-77.0.3865.120-bp150.237.1 SUSE Package Hub 15 SP1:chromedriver-77.0.3865.120-bp151.3.18.1 SUSE Package Hub 15 SP1:chromium-77.0.3865.120-bp151.3.18.1 openSUSE Leap 15.0:chromedriver-77.0.3865.120-lp150.245.1 openSUSE Leap 15.0:chromium-77.0.3865.120-lp150.245.1 openSUSE Leap 15.1:chromedriver-77.0.3865.120-lp151.2.36.1 openSUSE Leap 15.1:chromium-77.0.3865.120-lp151.2.36.1 openSUSE Leap 15.2:chromium-83.0.4103.97-lp152.1.1 openSUSE Leap 15.3:chromium-90.0.4430.212-bp153.1.1 openSUSE Leap 15.4:chromium-101.0.4951.64-bp154.1.2 openSUSE Tumbleweed:chromedriver-93.0.4577.82-1.1 openSUSE Tumbleweed:chromium-93.0.4577.82-1.1 openSUSE Tumbleweed:ungoogled-chromium-113.0.5672.92-1.1 openSUSE Tumbleweed:ungoogled-chromium-chromedriver-113.0.5672.92-1.1 important 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N