CVE-2016-1669: Buffer Overflow
First published: Thu May 12 2016(Updated: )
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
Credit: cve-coordination@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/Chrome | <50.0.2661.10 | 50.0.2661.10 |
| redhat/nodejs | <0.10.46 | 0.10.46 |
| redhat/nodejs | <0.12.15 | 0.12.15 |
| redhat/nodejs | <4.4.6 | 4.4.6 |
| redhat/nodejs | <5.12.2 | 5.12.2 |
| redhat/nodejs | <6.2.0 | 6.2.0 |
| Debian Linux | =8.0 | |
| Google Chrome | <=50.0.2661.87 | |
| openSUSE | =13.1 | |
| Google V8 | <=5.0.71 | |
| Langgenius Dify Node.js | >=0.10.0<0.10.46 | |
| Langgenius Dify Node.js | >=0.12.0<0.12.15 | |
| Langgenius Dify Node.js | >=4.0.0<=4.1.2 | |
| Langgenius Dify Node.js | >=4.2.0<4.4.6 | |
| Langgenius Dify Node.js | >=5.0.0<5.12.0 | |
| Langgenius Dify Node.js | >=6.0.0<=6.2.0 | |
| Ubuntu | =14.04 | |
| Ubuntu | =15.10 | |
| Ubuntu | =16.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://code.google.com/p/chromium/issues/detail?id=606115
- http://googlechromereleases.blogspot.com/2016/05/stable-channel-update.html
- https://rhn.redhat.com/errata/RHSA-2016-1080.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353620
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353623
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353619
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353622
- https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/
- https://chromium.googlesource.com/v8/v8/+/3a9bfecfe41737aaf0dbf92ce68352f8acaaaf73%5E%21/#F0
- https://codereview.chromium.org/1930873002
- https://github.com/nodejs/node/commit/fcb9145e291e8cb82164bc1fe3db1c1dae219b55
- https://rhn.redhat.com/errata/RHSA-2017-0002.html
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263179&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263179&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263290&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263290&action=edit
- https://access.redhat.com/errata/RHSA-2017:0882
- https://access.redhat.com/errata/RHSA-2017:0881
- https://access.redhat.com/errata/RHSA-2017:0879
- https://access.redhat.com/errata/RHSA-2017:0880
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1470299
- https://access.redhat.com/errata/RHSA-2018:0336
- https://github.com/openshift/library/blob/master/official/nodejs/imagestreams/nodejs-rhel7.json
- https://jira.mongodb.org/browse/SERVER-19376
- https://bugzilla.redhat.com/show_bug.cgi?id=1335449
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00043.html
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00050.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00048.html
- http://lists.opensuse.org/opensuse-updates/2016-07/msg00063.html
- http://rhn.redhat.com/errata/RHSA-2016-1080.html
- http://rhn.redhat.com/errata/RHSA-2017-0002.html
- http://www.debian.org/security/2016/dsa-3590
- http://www.securityfocus.com/bid/90584
- http://www.securitytracker.com/id/1035872
- http://www.ubuntu.com/usn/USN-2960-1
- https://codereview.chromium.org/1945313002
- https://crbug.com/606115
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05347541
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CITS5GIUTNWVSUXMSORIAJJLQBEGL2CK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZPTKXI62OPCJCJGCSFMST4HIBQ27J72W/
- https://security.gentoo.org/glsa/201605-02
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CITS5GIUTNWVSUXMSORIAJJLQBEGL2CK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZPTKXI62OPCJCJGCSFMST4HIBQ27J72W/
Frequently Asked Questions
What is the severity of CVE-2016-1669?
CVE-2016-1669 has a severity rating that indicates it can lead to denial of service and potential buffer overflow vulnerabilities.
How do I fix CVE-2016-1669?
To fix CVE-2016-1669, upgrade Google Chrome to version 50.0.2661.10 or later, or update Node.js to the specified remedial versions.
What versions of Google V8 are affected by CVE-2016-1669?
CVE-2016-1669 affects Google V8 versions prior to 5.0.71.
Which software packages are impacted by CVE-2016-1669?
CVE-2016-1669 impacts Google Chrome, multiple versions of Node.js, Debian Linux 8.0, and openSUSE 13.1.
Can CVE-2016-1669 be exploited remotely?
Yes, CVE-2016-1669 can be exploited by remote attackers to cause a denial of service.
- agent/type
- agent/first-publish-date
- agent/author
- agent/severity
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-1669
- agent/software-canonical-lookup
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/debian
- canonical/debian linux
- version/debian linux/8.0
- vendor/google
- canonical/google chrome
- version/google chrome/50.0.2661.87
- vendor/opensuse
- canonical/opensuse
- version/opensuse/13.1
- canonical/google v8
- version/google v8/5.0.71
- vendor/nodejs
- canonical/langgenius dify node.js
- version/langgenius dify node.js/0.10.0
- version/langgenius dify node.js/0.12.0
- version/langgenius dify node.js/4.0.0
- version/langgenius dify node.js/4.1.2
- version/langgenius dify node.js/4.2.0
- version/langgenius dify node.js/5.0.0
- version/langgenius dify node.js/6.0.0
- version/langgenius dify node.js/6.2.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/15.10
- version/ubuntu/16.04