First published: Thu May 12 2016(Updated: )
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
Credit: cve-coordination@google.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/Chrome | <50.0.2661.10 | 50.0.2661.10 |
redhat/nodejs | <0.10.46 | 0.10.46 |
redhat/nodejs | <0.12.15 | 0.12.15 |
redhat/nodejs | <4.4.6 | 4.4.6 |
redhat/nodejs | <5.12.2 | 5.12.2 |
redhat/nodejs | <6.2.0 | 6.2.0 |
Debian Debian Linux | =8.0 | |
Google Chrome | <=50.0.2661.87 | |
openSUSE openSUSE | =13.1 | |
Google V8 | <=5.0.71 | |
Nodejs Node.js | >=0.10.0<0.10.46 | |
Nodejs Node.js | >=0.12.0<0.12.15 | |
Nodejs Node.js | >=4.0.0<=4.1.2 | |
Nodejs Node.js | >=4.2.0<4.4.6 | |
Nodejs Node.js | >=5.0.0<5.12.0 | |
Nodejs Node.js | >=6.0.0<=6.2.0 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =15.10 | |
Canonical Ubuntu Linux | =16.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.