CVE-2016-5150

EUVD-2016-6101

11.09.2016, 10:59

WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, has an Indexed Database (aka IndexedDB) API implementation that does not properly restrict key-path evaluation, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code that leverages certain side effects.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 80%

Affected Products (NVD)

Vendor	Product	Version
opensuse	leap	42.1
google	chrome	𝑥 ≤ 52.0.2743.116

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

chromium-browser

precise	ignored
trusty	Fixed 53.0.2785.143-0ubuntu0.14.04.1.1142 released
xenial	Fixed 53.0.2785.143-0ubuntu0.16.04.1.1254 released
yakkety	Fixed 53.0.2785.143-0ubuntu1.1307 released

oxide-qt

precise	dne
trusty	Fixed 1.17.7-0ubuntu0.14.04.1 released
xenial	Fixed 1.17.7-0ubuntu0.16.04.1 released
yakkety	Fixed 1.17.7-0ubuntu1 released

Common Weakness Enumeration

CWE-416 - Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

References

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html

http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html

http://rhn.redhat.com/errata/RHSA-2016-1854.html

http://www.debian.org/security/2016/dsa-3660

http://www.securityfocus.com/bid/92717

http://www.securitytracker.com/id/1036729

https://codereview.chromium.org/2255413004/

https://crbug.com/637963

https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html

https://security.gentoo.org/glsa/201610-09

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html

http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html

http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html

http://rhn.redhat.com/errata/RHSA-2016-1854.html

http://www.debian.org/security/2016/dsa-3660

http://www.securityfocus.com/bid/92717

http://www.securitytracker.com/id/1036729

https://codereview.chromium.org/2255413004/

https://crbug.com/637963

https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html

https://security.gentoo.org/glsa/201610-09