CVE-2016-1646

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.
References
Link Resource
http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html Release Notes Vendor Advisory
http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html Release Notes Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html Mailing List Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-0525.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-0525.html Third Party Advisory
http://www.debian.org/security/2016/dsa-3531 Mailing List Third Party Advisory
http://www.debian.org/security/2016/dsa-3531 Mailing List Third Party Advisory
http://www.securitytracker.com/id/1035423 Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1035423 Broken Link Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-2955-1 Third Party Advisory
http://www.ubuntu.com/usn/USN-2955-1 Third Party Advisory
https://code.google.com/p/chromium/issues/detail?id=594574 Exploit Issue Tracking Mailing List
https://code.google.com/p/chromium/issues/detail?id=594574 Exploit Issue Tracking Mailing List
https://codereview.chromium.org/1804963002/ Patch
https://codereview.chromium.org/1804963002/ Patch
https://security.gentoo.org/glsa/201605-02 Third Party Advisory
https://security.gentoo.org/glsa/201605-02 Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

Configuration 3 (hide)

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*

Configuration 5 (hide)

OR cpe:2.3:o:redhat:enterprise_linux_eus:6.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

History

28 Jun 2024, 14:19

Type Values Removed Values Added
First Time Redhat enterprise Linux Desktop
Opensuse leap
Redhat enterprise Linux Workstation
Redhat enterprise Linux Eus
Redhat enterprise Linux Server
Suse package Hub
Suse
Redhat
CWE CWE-119 CWE-125
References () https://codereview.chromium.org/1804963002/ - () https://codereview.chromium.org/1804963002/ - Patch
References () https://code.google.com/p/chromium/issues/detail?id=594574 - () https://code.google.com/p/chromium/issues/detail?id=594574 - Exploit, Issue Tracking, Mailing List
References () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html - () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html - Mailing List, Third Party Advisory
References () http://www.securitytracker.com/id/1035423 - () http://www.securitytracker.com/id/1035423 - Broken Link, Third Party Advisory, VDB Entry
References () https://security.gentoo.org/glsa/201605-02 - () https://security.gentoo.org/glsa/201605-02 - Third Party Advisory
References () http://www.debian.org/security/2016/dsa-3531 - () http://www.debian.org/security/2016/dsa-3531 - Mailing List, Third Party Advisory
References () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html - () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html - Mailing List, Third Party Advisory
References () http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html - () http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html - Release Notes, Vendor Advisory
References () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html - () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html - Mailing List, Third Party Advisory
References () http://www.ubuntu.com/usn/USN-2955-1 - () http://www.ubuntu.com/usn/USN-2955-1 - Third Party Advisory
References () http://rhn.redhat.com/errata/RHSA-2016-0525.html - () http://rhn.redhat.com/errata/RHSA-2016-0525.html - Third Party Advisory
CPE cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:6.7:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

07 Nov 2023, 02:30

Type Values Removed Values Added
References (CONFIRM) https://codereview.chromium.org/1804963002/ - Issue Tracking () https://codereview.chromium.org/1804963002/ -
References (CONFIRM) https://code.google.com/p/chromium/issues/detail?id=594574 - Issue Tracking () https://code.google.com/p/chromium/issues/detail?id=594574 -
References (SUSE) http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html - Third Party Advisory () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html -
References (SECTRACK) http://www.securitytracker.com/id/1035423 - () http://www.securitytracker.com/id/1035423 -
References (REDHAT) http://rhn.redhat.com/errata/RHSA-2016-0525.html - () http://rhn.redhat.com/errata/RHSA-2016-0525.html -
References (DEBIAN) http://www.debian.org/security/2016/dsa-3531 - Third Party Advisory () http://www.debian.org/security/2016/dsa-3531 -
References (SUSE) http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html - () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html -
References (CONFIRM) http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html - Vendor Advisory () http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html -
References (SUSE) http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html - () http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html -
References (UBUNTU) http://www.ubuntu.com/usn/USN-2955-1 - Third Party Advisory () http://www.ubuntu.com/usn/USN-2955-1 -
References (GENTOO) https://security.gentoo.org/glsa/201605-02 - () https://security.gentoo.org/glsa/201605-02 -

Information

Published : 2016-03-29 10:59

Updated : 2025-03-06 19:48


NVD link : CVE-2016-1646

Mitre link : CVE-2016-1646


JSON object : View

Products Affected

debian

  • debian_linux

canonical

  • ubuntu_linux

suse

  • package_hub

opensuse

  • leap
  • opensuse

redhat

  • enterprise_linux_desktop
  • enterprise_linux_server
  • enterprise_linux_eus
  • enterprise_linux_workstation

google

  • chrome
CWE
CWE-125

Out-of-bounds Read