CVE-2016-1669: Buffer Overflow
First published: Thu May 12 2016(Updated: )
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
Credit: cve-coordination@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/Chrome | <50.0.2661.10 | 50.0.2661.10 |
| redhat/nodejs | <0.10.46 | 0.10.46 |
| redhat/nodejs | <0.12.15 | 0.12.15 |
| redhat/nodejs | <4.4.6 | 4.4.6 |
| redhat/nodejs | <5.12.2 | 5.12.2 |
| redhat/nodejs | <6.2.0 | 6.2.0 |
| Debian Debian Linux | =8.0 | |
| Google Chrome | <=50.0.2661.87 | |
| openSUSE openSUSE | =13.1 | |
| Google V8 | <=5.0.71 | |
| Nodejs Node.js | >=0.10.0<0.10.46 | |
| Nodejs Node.js | >=0.12.0<0.12.15 | |
| Nodejs Node.js | >=4.0.0<=4.1.2 | |
| Nodejs Node.js | >=4.2.0<4.4.6 | |
| Nodejs Node.js | >=5.0.0<5.12.0 | |
| Nodejs Node.js | >=6.0.0<=6.2.0 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =15.10 | |
| Canonical Ubuntu Linux | =16.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://code.google.com/p/chromium/issues/detail?id=606115
- http://googlechromereleases.blogspot.com/2016/05/stable-channel-update.html
- https://rhn.redhat.com/errata/RHSA-2016-1080.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353620
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353623
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353619
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1353622
- https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/
- https://chromium.googlesource.com/v8/v8/+/3a9bfecfe41737aaf0dbf92ce68352f8acaaaf73%5E%21/#F0
- https://codereview.chromium.org/1930873002
- https://github.com/nodejs/node/commit/fcb9145e291e8cb82164bc1fe3db1c1dae219b55
- https://rhn.redhat.com/errata/RHSA-2017-0002.html
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263179&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263179&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263290&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1263290&action=edit
- https://access.redhat.com/errata/RHSA-2017:0882
- https://access.redhat.com/errata/RHSA-2017:0881
- https://access.redhat.com/errata/RHSA-2017:0879
- https://access.redhat.com/errata/RHSA-2017:0880
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1470299
- https://access.redhat.com/errata/RHSA-2018:0336
- https://github.com/openshift/library/blob/master/official/nodejs/imagestreams/nodejs-rhel7.json
- https://jira.mongodb.org/browse/SERVER-19376
- https://bugzilla.redhat.com/show_bug.cgi?id=1335449
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00043.html
- http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00050.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00048.html
- http://lists.opensuse.org/opensuse-updates/2016-07/msg00063.html
- http://rhn.redhat.com/errata/RHSA-2016-1080.html
- http://rhn.redhat.com/errata/RHSA-2017-0002.html
- http://www.debian.org/security/2016/dsa-3590
- http://www.securityfocus.com/bid/90584
- http://www.securitytracker.com/id/1035872
- http://www.ubuntu.com/usn/USN-2960-1
- https://codereview.chromium.org/1945313002
- https://crbug.com/606115
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05347541
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CITS5GIUTNWVSUXMSORIAJJLQBEGL2CK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZPTKXI62OPCJCJGCSFMST4HIBQ27J72W/
- https://security.gentoo.org/glsa/201605-02
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CITS5GIUTNWVSUXMSORIAJJLQBEGL2CK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZPTKXI62OPCJCJGCSFMST4HIBQ27J72W/
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/author
- agent/severity
- agent/references
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-1669
- agent/software-canonical-lookup
- agent/event
- agent/weakness
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- package-manager/redhat
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- vendor/google
- canonical/google chrome
- version/google chrome/50.0.2661.87
- vendor/opensuse
- canonical/opensuse opensuse
- version/opensuse opensuse/13.1
- canonical/google v8
- version/google v8/5.0.71
- vendor/nodejs
- canonical/nodejs node.js
- version/nodejs node.js/0.10.0
- version/nodejs node.js/0.12.0
- version/nodejs node.js/4.0.0
- version/nodejs node.js/4.1.2
- version/nodejs node.js/4.2.0
- version/nodejs node.js/5.0.0
- version/nodejs node.js/6.0.0
- version/nodejs node.js/6.2.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/15.10
- version/canonical ubuntu linux/16.04