suse · CVE-2016-1669

Quick triage

Priority: high 公開: 2021-05-30 13:38:20 UTC Updated: 2023-12-09 01:20:48 UTC

参照: Official suse advisory, NVD, CVE.org · CVE 詳細

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-1669 severity important: SUSE including 20 source package names (chromedriver-55.0.2883.75-3.1, chromium-101.0.4951.64-bp154.1.2, …), 22 product×package rows across 8 product lines (SUSE Linux Enterprise Module for Web and Scripting 12, SUSE OpenStack Cloud Crowbar 8, … (8 product lines)): Fixed 12, Known Not Affected 10.

Description:

The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.

cvelogic Threat Intelligence