CVE-2016-7549

EUVD-2016-8402
Google Chrome before 53.0.2785.113 does not ensure that the recipient of a certain IPC message is a valid RenderFrame or RenderWidget, which allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) or possibly have unspecified other impact by leveraging access to a renderer process, related to render_frame_host_impl.cc and render_widget_host_impl.cc, as demonstrated by a Password Manager message.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
≤ 53.0.2785.101
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
precise
ignored
trusty
Fixed 53.0.2785.143-0ubuntu0.14.04.1.1142
released
xenial
Fixed 53.0.2785.143-0ubuntu0.16.04.1.1254
released
yakkety
Fixed 55.0.2883.87-0ubuntu0.16.10.1328
released
oxide-qt
precise
dne
trusty
Fixed 1.17.9-0ubuntu0.14.04.1
released
xenial
Fixed 1.17.9-0ubuntu0.16.04.1
released
yakkety
Fixed 1.17.9-0ubuntu1
released
References
http://rhn.redhat.com/errata/RHSA-2016-1905.html
http://www.securityfocus.com/bid/93160
https://codereview.chromium.org/1534933002
https://crbug.com/556351
https://crbug.com/646394
https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html
http://rhn.redhat.com/errata/RHSA-2016-1905.html
http://www.securityfocus.com/bid/93160
https://codereview.chromium.org/1534933002
https://crbug.com/556351
https://crbug.com/646394
https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-desktop_13.html