Browser-laptop: New electron vulnerability. Is brave affected ? CVE-2018-1000136

Created on 13 May 2018  路  3Comments  路  Source: brave/browser-laptop

I've just came across this CVE-2018-1000136 on site below.
https://www.bleepingcomputer.com/news/security/security-flaw-impacts-electron-based-apps-such-as-skype-github-discord-others/

Since brave is based on electron, is it affected by this bug ?

question security
Source
picture yar05

Most helpful comment

We knew about this before public disclosure and can confirm we were not affected. We use Chromium's implementation of window.open, not Electron's. Thanks for asking!

picture diracdeltas on 13 May 2018
👍3

All 3 comments

cc @diracdeltas

Jacalz picture Jacalz on 13 May 2018

We knew about this before public disclosure and can confirm we were not affected. We use Chromium's implementation of window.open, not Electron's. Thanks for asking!

diracdeltas picture diracdeltas on 13 May 2018
👍3

The article has been amended to inform the reader that Brave is not affected.

jonathansampson picture jonathansampson on 14 May 2018
2
Was this page helpful?
0 / 5 - 0 ratings

Related issues

jonathansampson picture jonathansampson  路  3Comments
bsclifton picture bsclifton  路  3Comments
shortstuffsushi picture shortstuffsushi  路  3Comments
antiroyalty picture antiroyalty  路  3Comments
octohedron picture octohedron  路  3Comments