Package v8-chromium updated to version 4.9.385.33-alt1 for branch sisyphus in task 160464.

Published: 2016-04-14
Modified: 2025-02-06

BDU:2016-00915

Уязвимость браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: CRITICAL (9.3) Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

References:

CVE-2016-1646

Published: 2016-03-29
Modified: 2025-10-22

CVE-2016-1646

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.

Severity: CRITICAL (9.3) Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Version: 2.1.2

Package v8-chromium update in sisyphus on 2016-03-25

ALT-PU-2016-1282-1

Closed vulnerabilities

BDU:2016-00915

CVE-2016-1646