View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2017-5084 medium priority: Ubuntu including 2 source packages (chromium-browser, oxide-qt), 16 status rows across 8 suites (artful, bionic, cosmic, trusty, upstream, xenial, yakkety, zesty): released 8, ignored 4, DNE 3, needs-triage 1.
Inappropriate implementation in image-burner in Google Chrome OS prior to 59.0.3071.92 allowed a local attacker to read local files via dbus-send commands to a BurnImage D-Bus endpoint.