Browser-laptop: New electron vulnerability. Is brave affected ? CVE-2018-1000136

Created on 13 May 2018  路  3Comments  路  Source: brave/browser-laptop

I've just came across this CVE-2018-1000136 on site below.
https://www.bleepingcomputer.com/news/security/security-flaw-impacts-electron-based-apps-such-as-skype-github-discord-others/

Since brave is based on electron, is it affected by this bug ?

question security
Source
picture yar05

Most helpful comment

We knew about this before public disclosure and can confirm we were not affected. We use Chromium's implementation of window.open, not Electron's. Thanks for asking!

picture diracdeltas on 13 May 2018
👍3

All 3 comments

cc @diracdeltas

Jacalz picture Jacalz on 13 May 2018

We knew about this before public disclosure and can confirm we were not affected. We use Chromium's implementation of window.open, not Electron's. Thanks for asking!

diracdeltas picture diracdeltas on 13 May 2018
👍3

The article has been amended to inform the reader that Brave is not affected.

jonathansampson picture jonathansampson on 14 May 2018
2
Was this page helpful?
0 / 5 - 0 ratings

Related issues

luixxiul picture luixxiul  路  3Comments
octohedron picture octohedron  路  3Comments
bbondy picture bbondy  路  3Comments
luixxiul picture luixxiul  路  3Comments
bbondy picture bbondy  路  3Comments