Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-5142

Опубликовано: 07 авг. 2016
Источник: debian
EPSS Низкий

Описание

The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code, related to NormalizeAlgorithm.cpp and SubtleCrypto.cpp.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
chromium-browserfixed52.0.2743.116-1package
chromium-browserend-of-lifewheezypackage

EPSS

Процентиль: 86%
0.02836
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-5142

CVSS3: 9.8
ubuntu
больше 9 лет назад

The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code, related to NormalizeAlgorithm.cpp and SubtleCrypto.cpp.

redhat логотип

CVE-2016-5142

CVSS3: 8.8
redhat
больше 9 лет назад

The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code, related to NormalizeAlgorithm.cpp and SubtleCrypto.cpp.

nvd логотип

CVE-2016-5142

CVSS3: 9.8
nvd
больше 9 лет назад

The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code, related to NormalizeAlgorithm.cpp and SubtleCrypto.cpp.

github логотип

GHSA-g54g-mw8m-9fqx

CVSS3: 9.8
github
больше 3 лет назад

The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code, related to NormalizeAlgorithm.cpp and SubtleCrypto.cpp.

EPSS

Процентиль: 86%
0.02836
Низкий