参照: Official suse advisory, NVD, CVE.org · CVE 詳細
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-1669 severity important: SUSE including 20 source package names (chromedriver-55.0.2883.75-3.1, chromium-101.0.4951.64-bp154.1.2, …), 22 product×package rows across 8 product lines (SUSE Linux Enterprise Module for Web and Scripting 12, SUSE OpenStack Cloud Crowbar 8, … (8 product lines)): Fixed 12, Known Not Affected 10.
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.