Vulnerability-Lookup

CVE-2016-1646 (GCVE-0-2016-1646)

Vulnerability from cvelistv5 – Published: 2016-03-29 10:00 – Updated: 2025-10-21 23:55

CISA KEV

Summary

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC

Exploitation: active Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

n/a
CWE-125 - Out-of-bounds Read

Assigner

Chrome

References

12 references

URL	Tags
http://rhn.redhat.com/errata/RHSA-2016-0525.html	vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://googlechromereleases.blogspot.com/2016/03/…	x_refsource_CONFIRM
http://www.debian.org/security/2016/dsa-3531	vendor-advisoryx_refsource_DEBIAN
https://codereview.chromium.org/1804963002/	x_refsource_CONFIRM
http://www.securitytracker.com/id/1035423	vdb-entryx_refsource_SECTRACK
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
https://code.google.com/p/chromium/issues/detail?…	x_refsource_CONFIRM
http://www.ubuntu.com/usn/USN-2955-1	vendor-advisoryx_refsource_UBUNTU
https://security.gentoo.org/glsa/201605-02	vendor-advisoryx_refsource_GENTOO
https://www.cisa.gov/known-exploited-vulnerabilit…	government-resource

Date Public

2016-03-24 00:00

CISA KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

KEV entry ID: 7f1f75f2-dac7-4a04-b18b-709c35ac4648

Vulnerability ID: CVE-2016-1646

Status: Confirmed

Status Updated: 2022-06-08 00:00 UTC

Exploited: Yes

Timestamps

First Seen: 2022-06-08

Asserted: 2022-06-08

Scope

Notes: KEV entry: Google Chromium V8 Out-of-Bounds Read Vulnerability | Affected: Google / Chromium V8 | Description: Google Chromium V8 Engine contains an out-of-bounds read vulnerability that allows a remote attacker to cause a denial of service or possibly have another unspecified impact via crafted JavaScript code. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera. | Required action: Apply updates per vendor instructions. | Due date: 2022-06-22 | Known ransomware campaign use (KEV): Unknown | Notes (KEV): https://nvd.nist.gov/vuln/detail/CVE-2016-1646

Evidence

Type: Vendor Report

Signal: Successful Exploitation

Confidence: 80%

Source: cisa-kev

Details

Cwes	CWE-119
Feed	CISA Known Exploited Vulnerabilities Catalog
Product	Chromium V8
Due Date	2022-06-22
Date Added	2022-06-08
Vendorproject	Google
Vulnerabilityname	Google Chromium V8 Out-of-Bounds Read Vulnerability
Knownransomwarecampaignuse	Unknown

References

CVE-2016-1646

Created: 2026-02-02 12:27 UTC | Updated: 2026-02-06 07:17 UTC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T23:02:12.453Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2016:0525",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2016-0525.html"
          },
          {
            "name": "openSUSE-SU-2016:0929",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html"
          },
          {
            "name": "openSUSE-SU-2016:1059",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
          },
          {
            "name": "DSA-3531",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2016/dsa-3531"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://codereview.chromium.org/1804963002/"
          },
          {
            "name": "1035423",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1035423"
          },
          {
            "name": "openSUSE-SU-2016:0930",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://code.google.com/p/chromium/issues/detail?id=594574"
          },
          {
            "name": "USN-2955-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2955-1"
          },
          {
            "name": "GLSA-201605-02",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201605-02"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2016-1646",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-29T17:19:02.506820Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2022-06-08",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-1646"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:55:54.355Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-1646"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "CVE-2016-1646 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-03-24T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-30T18:57:01.000Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "name": "RHSA-2016:0525",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2016-0525.html"
        },
        {
          "name": "openSUSE-SU-2016:0929",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html"
        },
        {
          "name": "openSUSE-SU-2016:1059",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        },
        {
          "name": "DSA-3531",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2016/dsa-3531"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://codereview.chromium.org/1804963002/"
        },
        {
          "name": "1035423",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1035423"
        },
        {
          "name": "openSUSE-SU-2016:0930",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://code.google.com/p/chromium/issues/detail?id=594574"
        },
        {
          "name": "USN-2955-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2955-1"
        },
        {
          "name": "GLSA-201605-02",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201605-02"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@google.com",
          "ID": "CVE-2016-1646",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2016:0525",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2016-0525.html"
            },
            {
              "name": "openSUSE-SU-2016:0929",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html"
            },
            {
              "name": "openSUSE-SU-2016:1059",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html"
            },
            {
              "name": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
              "refsource": "CONFIRM",
              "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
            },
            {
              "name": "DSA-3531",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2016/dsa-3531"
            },
            {
              "name": "https://codereview.chromium.org/1804963002/",
              "refsource": "CONFIRM",
              "url": "https://codereview.chromium.org/1804963002/"
            },
            {
              "name": "1035423",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1035423"
            },
            {
              "name": "openSUSE-SU-2016:0930",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html"
            },
            {
              "name": "https://code.google.com/p/chromium/issues/detail?id=594574",
              "refsource": "CONFIRM",
              "url": "https://code.google.com/p/chromium/issues/detail?id=594574"
            },
            {
              "name": "USN-2955-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2955-1"
            },
            {
              "name": "GLSA-201605-02",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201605-02"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2016-1646",
    "datePublished": "2016-03-29T10:00:00.000Z",
    "dateReserved": "2016-01-12T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:55:54.355Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2016-1646",
      "cwes": "[\"CWE-119\"]",
      "dateAdded": "2022-06-08",
      "dueDate": "2022-06-22",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://nvd.nist.gov/vuln/detail/CVE-2016-1646",
      "product": "Chromium V8",
      "requiredAction": "Apply updates per vendor instructions.",
      "shortDescription": "Google Chromium V8 Engine contains an out-of-bounds read vulnerability that allows a remote attacker to cause a denial of service or possibly have another unspecified impact via crafted JavaScript code. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.",
      "vendorProject": "Google",
      "vulnerabilityName": "Google Chromium V8 Out-of-Bounds Read Vulnerability"
    },
    "epss": {
      "cve": "CVE-2016-1646",
      "date": "2026-06-14",
      "epss": "0.66909",
      "percentile": "0.98578"
    },
    "fkie_nvd": {
      "cisaActionDue": "2022-06-22",
      "cisaExploitAdd": "2022-06-08",
      "cisaRequiredAction": "Apply updates per vendor instructions.",
      "cisaVulnerabilityName": "Google Chromium V8 Out-of-Bounds Read Vulnerability",
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\", \"matchCriteriaId\": \"815D70A8-47D3-459C-A32C-9FEACA0659D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E88A537F-F4D0-46B9-9E37-965233C2A355\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\", \"matchCriteriaId\": \"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"49.0.2623.108\", \"matchCriteriaId\": \"8D0E4F36-3A08-4A84-A0ED-C8BF1CD72EDD\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"284A8DA0-317B-4BBE-AECB-7E91BBF0DD3B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4863BE36-D16A-4D75-90D9-FD76DB5B48B7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A10BC294-9196-425F-9FB0-B1625465B47F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_eus:6.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"967EC28A-607F-48F4-AD64-5E3041C768F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BBCD86A-E6C7-4444-9D74-F861084090F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.\"}, {\"lang\": \"es\", \"value\": \"La implementaci\\u00f3n de Array.prototype.concat en builtins.cc en Google V8, tal como se utiliza en Google Chrome en versiones anteriores a 49.0.2623.108, no considera adecuadamante los tipos de datos del elemento, lo que permite a atacantes remotos provocar una denegaci\\u00f3n de servicio (lectura fuera de rango) o posiblemente tener otro impacto no especificado a trav\\u00e9s de c\\u00f3digo JavaScript manipulado.\"}]",
      "id": "CVE-2016-1646",
      "lastModified": "2024-11-21T02:46:48.570",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2016-03-29T10:59:00.160",
      "references": "[{\"url\": \"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0525.html\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.debian.org/security/2016/dsa-3531\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1035423\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-2955-1\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://code.google.com/p/chromium/issues/detail?id=594574\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Mailing List\"]}, {\"url\": \"https://codereview.chromium.org/1804963002/\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Patch\"]}, {\"url\": \"https://security.gentoo.org/glsa/201605-02\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0525.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.debian.org/security/2016/dsa-3531\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1035423\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-2955-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://code.google.com/p/chromium/issues/detail?id=594574\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Mailing List\"]}, {\"url\": \"https://codereview.chromium.org/1804963002/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://security.gentoo.org/glsa/201605-02\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "chrome-cve-admin@google.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2016-1646\",\"sourceIdentifier\":\"chrome-cve-admin@google.com\",\"published\":\"2016-03-29T10:59:00.160\",\"lastModified\":\"2026-04-21T17:50:52.650\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.\"},{\"lang\":\"es\",\"value\":\"La implementaci\u00f3n de Array.prototype.concat en builtins.cc en Google V8, tal como se utiliza en Google Chrome en versiones anteriores a 49.0.2623.108, no considera adecuadamante los tipos de datos del elemento, lo que permite a atacantes remotos provocar una denegaci\u00f3n de servicio (lectura fuera de rango) o posiblemente tener otro impacto no especificado a trav\u00e9s de c\u00f3digo JavaScript manipulado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"cisaExploitAdd\":\"2022-06-08\",\"cisaActionDue\":\"2022-06-22\",\"cisaRequiredAction\":\"Apply updates per vendor instructions.\",\"cisaVulnerabilityName\":\"Google Chromium V8 Out-of-Bounds Read Vulnerability\",\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E88A537F-F4D0-46B9-9E37-965233C2A355\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"49.0.2623.108\",\"matchCriteriaId\":\"8D0E4F36-3A08-4A84-A0ED-C8BF1CD72EDD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"284A8DA0-317B-4BBE-AECB-7E91BBF0DD3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4863BE36-D16A-4D75-90D9-FD76DB5B48B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A10BC294-9196-425F-9FB0-B1625465B47F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"967EC28A-607F-48F4-AD64-5E3041C768F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}]}]}],\"references\":[{\"url\":\"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0525.html\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2016/dsa-3531\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1035423\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-2955-1\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://code.google.com/p/chromium/issues/detail?id=594574\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Mailing List\"]},{\"url\":\"https://codereview.chromium.org/1804963002/\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://security.gentoo.org/glsa/201605-02\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-0525.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2016/dsa-3531\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1035423\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-2955-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://code.google.com/p/chromium/issues/detail?id=594574\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Mailing List\"]},{\"url\":\"https://codereview.chromium.org/1804963002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://security.gentoo.org/glsa/201605-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-1646\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0525.html\", \"name\": \"RHSA-2016:0525\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\", \"name\": \"openSUSE-SU-2016:0929\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\", \"x_transferred\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\", \"name\": \"openSUSE-SU-2016:1059\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\", \"x_transferred\"]}, {\"url\": \"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"http://www.debian.org/security/2016/dsa-3531\", \"name\": \"DSA-3531\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\", \"x_transferred\"]}, {\"url\": \"https://codereview.chromium.org/1804963002/\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"http://www.securitytracker.com/id/1035423\", \"name\": \"1035423\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\", \"x_transferred\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\", \"name\": \"openSUSE-SU-2016:0930\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\", \"x_transferred\"]}, {\"url\": \"https://code.google.com/p/chromium/issues/detail?id=594574\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-2955-1\", \"name\": \"USN-2955-1\", \"tags\": [\"vendor-advisory\", \"x_refsource_UBUNTU\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/201605-02\", \"name\": \"GLSA-201605-02\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-05T23:02:12.453Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2016-1646\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-29T17:19:02.506820Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2022-06-08\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-1646\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2022-06-08T00:00:00.000Z\", \"value\": \"CVE-2016-1646 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-1646\", \"tags\": [\"government-resource\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125 Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-29T17:17:07.258Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"datePublic\": \"2016-03-24T00:00:00.000Z\", \"references\": [{\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0525.html\", \"name\": \"RHSA-2016:0525\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\", \"name\": \"openSUSE-SU-2016:0929\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\", \"name\": \"openSUSE-SU-2016:1059\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\"]}, {\"url\": \"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"http://www.debian.org/security/2016/dsa-3531\", \"name\": \"DSA-3531\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\"]}, {\"url\": \"https://codereview.chromium.org/1804963002/\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"http://www.securitytracker.com/id/1035423\", \"name\": \"1035423\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\", \"name\": \"openSUSE-SU-2016:0930\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\"]}, {\"url\": \"https://code.google.com/p/chromium/issues/detail?id=594574\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-2955-1\", \"name\": \"USN-2955-1\", \"tags\": [\"vendor-advisory\", \"x_refsource_UBUNTU\"]}, {\"url\": \"https://security.gentoo.org/glsa/201605-02\", \"name\": \"GLSA-201605-02\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28\", \"shortName\": \"Chrome\", \"dateUpdated\": \"2016-11-30T18:57:01.000Z\"}, \"x_legacyV4Record\": {\"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"n/a\"}]}, \"product_name\": \"n/a\"}]}, \"vendor_name\": \"n/a\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-0525.html\", \"name\": \"RHSA-2016:0525\", \"refsource\": \"REDHAT\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html\", \"name\": \"openSUSE-SU-2016:0929\", \"refsource\": \"SUSE\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html\", \"name\": \"openSUSE-SU-2016:1059\", \"refsource\": \"SUSE\"}, {\"url\": \"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\", \"name\": \"http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html\", \"refsource\": \"CONFIRM\"}, {\"url\": \"http://www.debian.org/security/2016/dsa-3531\", \"name\": \"DSA-3531\", \"refsource\": \"DEBIAN\"}, {\"url\": \"https://codereview.chromium.org/1804963002/\", \"name\": \"https://codereview.chromium.org/1804963002/\", \"refsource\": \"CONFIRM\"}, {\"url\": \"http://www.securitytracker.com/id/1035423\", \"name\": \"1035423\", \"refsource\": \"SECTRACK\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html\", \"name\": \"openSUSE-SU-2016:0930\", \"refsource\": \"SUSE\"}, {\"url\": \"https://code.google.com/p/chromium/issues/detail?id=594574\", \"name\": \"https://code.google.com/p/chromium/issues/detail?id=594574\", \"refsource\": \"CONFIRM\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-2955-1\", \"name\": \"USN-2955-1\", \"refsource\": \"UBUNTU\"}, {\"url\": \"https://security.gentoo.org/glsa/201605-02\", \"name\": \"GLSA-201605-02\", \"refsource\": \"GENTOO\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"n/a\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2016-1646\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"security@google.com\"}}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2016-1646\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:55:54.355Z\", \"dateReserved\": \"2016-01-12T00:00:00.000Z\", \"assignerOrgId\": \"ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28\", \"datePublished\": \"2016-03-29T10:00:00.000Z\", \"assignerShortName\": \"Chrome\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

RHSA-2016_0525

Vulnerability from csaf_redhat - Published: 2016-03-30 07:54 - Updated: 2024-11-14 19:52

Summary

Red Hat Security Advisory: chromium-browser security update

Severity

Important

Notes

Topic: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 49.0.2623.108. Security Fix(es): Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim. (CVE-2016-1646, CVE-2016-1647, CVE-2016-1648, CVE-2016-1649, CVE-2016-1650)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2016-1646

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2016-1647

Use-after-free vulnerability in the RenderWidgetHostImpl::Destroy function in content/browser/renderer_host/render_widget_host_impl.cc in the Navigation implementation in Google Chrome before 49.0.2623.108 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2016-1648

Use-after-free vulnerability in the GetLoadTimes function in renderer/loadtimes_extension_bindings.cc in the Extensions implementation in Google Chrome before 49.0.2623.108 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2016-1649

The Program::getUniformInternal function in Program.cpp in libANGLE, as used in Google Chrome before 49.0.2623.108, does not properly handle a certain data-type mismatch, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted shader stages.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2016-1650

The PageCaptureSaveAsMHTMLFunction::ReturnFailure function in browser/extensions/api/page_capture/page_capture_api.cc in Google Chrome before 49.0.2623.108 allows attackers to cause a denial of service or possibly have unspecified other impact by triggering an error in creating an MHTML document.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2016-3679

Multiple unspecified vulnerabilities in Google V8 before 4.9.385.33, as used in Google Chrome before 49.0.2623.108, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686	—	Vendor Fix fix
Unresolved product id: 6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

References

35 references

URL	Category
https://access.redhat.com/errata/RHSA-2016:0525	self
https://access.redhat.com/security/updates/classi…	external
http://googlechromereleases.blogspot.com/2016/03/…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1321811	external
https://bugzilla.redhat.com/show_bug.cgi?id=1321812	external
https://bugzilla.redhat.com/show_bug.cgi?id=1321814	external
https://bugzilla.redhat.com/show_bug.cgi?id=1321815	external
https://bugzilla.redhat.com/show_bug.cgi?id=1321816	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2016-1646	self
https://bugzilla.redhat.com/show_bug.cgi?id=1321811	external
https://www.cve.org/CVERecord?id=CVE-2016-1646	external
https://nvd.nist.gov/vuln/detail/CVE-2016-1646	external
http://googlechromereleases.blogspot.com/2016/03/…	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2016-1647	self
https://bugzilla.redhat.com/show_bug.cgi?id=1321812	external
https://www.cve.org/CVERecord?id=CVE-2016-1647	external
https://nvd.nist.gov/vuln/detail/CVE-2016-1647	external
https://access.redhat.com/security/cve/CVE-2016-1648	self
https://bugzilla.redhat.com/show_bug.cgi?id=1321814	external
https://www.cve.org/CVERecord?id=CVE-2016-1648	external
https://nvd.nist.gov/vuln/detail/CVE-2016-1648	external
https://access.redhat.com/security/cve/CVE-2016-1649	self
https://bugzilla.redhat.com/show_bug.cgi?id=1321815	external
https://www.cve.org/CVERecord?id=CVE-2016-1649	external
https://nvd.nist.gov/vuln/detail/CVE-2016-1649	external
https://access.redhat.com/security/cve/CVE-2016-1650	self
https://bugzilla.redhat.com/show_bug.cgi?id=1321816	external
https://www.cve.org/CVERecord?id=CVE-2016-1650	external
https://nvd.nist.gov/vuln/detail/CVE-2016-1650	external
https://access.redhat.com/security/cve/CVE-2016-3679	self
https://bugzilla.redhat.com/show_bug.cgi?id=1322490	external
https://www.cve.org/CVERecord?id=CVE-2016-3679	external
https://nvd.nist.gov/vuln/detail/CVE-2016-3679	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Chromium is an open-source web browser, powered by WebKit (Blink).\n\nThis update upgrades Chromium to version 49.0.2623.108.\n\nSecurity Fix(es):\n\nSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim. (CVE-2016-1646, CVE-2016-1647, CVE-2016-1648, CVE-2016-1649, CVE-2016-1650)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2016:0525",
        "url": "https://access.redhat.com/errata/RHSA-2016:0525"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
        "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
      },
      {
        "category": "external",
        "summary": "1321811",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321811"
      },
      {
        "category": "external",
        "summary": "1321812",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321812"
      },
      {
        "category": "external",
        "summary": "1321814",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321814"
      },
      {
        "category": "external",
        "summary": "1321815",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321815"
      },
      {
        "category": "external",
        "summary": "1321816",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321816"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_0525.json"
      }
    ],
    "title": "Red Hat Security Advisory: chromium-browser security update",
    "tracking": {
      "current_release_date": "2024-11-14T19:52:30+00:00",
      "generator": {
        "date": "2024-11-14T19:52:30+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2016:0525",
      "initial_release_date": "2016-03-30T07:54:58+00:00",
      "revision_history": [
        {
          "date": "2016-03-30T07:54:58+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2016-03-30T07:54:58+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-14T19:52:30+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                  "product_id": "6Client-Supplementary-6.7.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                  "product_id": "6Server-Supplementary-6.7.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                  "product_id": "6Workstation-Supplementary-6.7.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux Supplementary"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromium-browser-0:49.0.2623.108-1.el6.x86_64",
                "product": {
                  "name": "chromium-browser-0:49.0.2623.108-1.el6.x86_64",
                  "product_id": "chromium-browser-0:49.0.2623.108-1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser@49.0.2623.108-1.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
                "product": {
                  "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
                  "product_id": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser-debuginfo@49.0.2623.108-1.el6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
                "product": {
                  "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
                  "product_id": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser-debuginfo@49.0.2623.108-1.el6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "chromium-browser-0:49.0.2623.108-1.el6.i686",
                "product": {
                  "name": "chromium-browser-0:49.0.2623.108-1.el6.i686",
                  "product_id": "chromium-browser-0:49.0.2623.108-1.el6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser@49.0.2623.108-1.el6?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:49.0.2623.108-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686"
        },
        "product_reference": "chromium-browser-0:49.0.2623.108-1.el6.i686",
        "relates_to_product_reference": "6Client-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:49.0.2623.108-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64"
        },
        "product_reference": "chromium-browser-0:49.0.2623.108-1.el6.x86_64",
        "relates_to_product_reference": "6Client-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686"
        },
        "product_reference": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
        "relates_to_product_reference": "6Client-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        },
        "product_reference": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
        "relates_to_product_reference": "6Client-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:49.0.2623.108-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686"
        },
        "product_reference": "chromium-browser-0:49.0.2623.108-1.el6.i686",
        "relates_to_product_reference": "6Server-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:49.0.2623.108-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64"
        },
        "product_reference": "chromium-browser-0:49.0.2623.108-1.el6.x86_64",
        "relates_to_product_reference": "6Server-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686"
        },
        "product_reference": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
        "relates_to_product_reference": "6Server-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        },
        "product_reference": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
        "relates_to_product_reference": "6Server-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:49.0.2623.108-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686"
        },
        "product_reference": "chromium-browser-0:49.0.2623.108-1.el6.i686",
        "relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:49.0.2623.108-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64"
        },
        "product_reference": "chromium-browser-0:49.0.2623.108-1.el6.x86_64",
        "relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686"
        },
        "product_reference": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
        "relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        },
        "product_reference": "chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
        "relates_to_product_reference": "6Workstation-Supplementary-6.7.z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-1646",
      "discovery_date": "2016-03-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1321811"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: out-of-bounds read in V8",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-1646"
        },
        {
          "category": "external",
          "summary": "RHBZ#1321811",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321811"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-1646",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-1646"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-1646",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1646"
        },
        {
          "category": "external",
          "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2016-03-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-03-30T07:54:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:0525"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2022-06-08T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: out-of-bounds read in V8"
    },
    {
      "cve": "CVE-2016-1647",
      "discovery_date": "2016-03-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1321812"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Use-after-free vulnerability in the RenderWidgetHostImpl::Destroy function in content/browser/renderer_host/render_widget_host_impl.cc in the Navigation implementation in Google Chrome before 49.0.2623.108 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: use-after-free in Navigation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-1647"
        },
        {
          "category": "external",
          "summary": "RHBZ#1321812",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321812"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-1647",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-1647"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-1647",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1647"
        },
        {
          "category": "external",
          "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        }
      ],
      "release_date": "2016-03-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-03-30T07:54:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:0525"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: use-after-free in Navigation"
    },
    {
      "cve": "CVE-2016-1648",
      "discovery_date": "2016-03-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1321814"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Use-after-free vulnerability in the GetLoadTimes function in renderer/loadtimes_extension_bindings.cc in the Extensions implementation in Google Chrome before 49.0.2623.108 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: use-after-free in Extensions",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-1648"
        },
        {
          "category": "external",
          "summary": "RHBZ#1321814",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321814"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-1648",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-1648"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-1648",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1648"
        },
        {
          "category": "external",
          "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        }
      ],
      "release_date": "2016-03-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-03-30T07:54:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:0525"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: use-after-free in Extensions"
    },
    {
      "cve": "CVE-2016-1649",
      "discovery_date": "2016-03-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1321815"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Program::getUniformInternal function in Program.cpp in libANGLE, as used in Google Chrome before 49.0.2623.108, does not properly handle a certain data-type mismatch, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted shader stages.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: buffer overflow in libANGLE",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-1649"
        },
        {
          "category": "external",
          "summary": "RHBZ#1321815",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321815"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-1649",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-1649"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-1649",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1649"
        },
        {
          "category": "external",
          "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        }
      ],
      "release_date": "2016-03-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-03-30T07:54:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:0525"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: buffer overflow in libANGLE"
    },
    {
      "cve": "CVE-2016-1650",
      "discovery_date": "2016-03-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1321816"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The PageCaptureSaveAsMHTMLFunction::ReturnFailure function in browser/extensions/api/page_capture/page_capture_api.cc in Google Chrome before 49.0.2623.108 allows attackers to cause a denial of service or possibly have unspecified other impact by triggering an error in creating an MHTML document.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: various fixes from internal audits",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-1650"
        },
        {
          "category": "external",
          "summary": "RHBZ#1321816",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321816"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-1650",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-1650"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-1650",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1650"
        },
        {
          "category": "external",
          "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        }
      ],
      "release_date": "2016-03-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-03-30T07:54:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:0525"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: various fixes from internal audits"
    },
    {
      "cve": "CVE-2016-3679",
      "discovery_date": "2016-03-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1322490"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple unspecified vulnerabilities in Google V8 before 4.9.385.33, as used in Google Chrome before 49.0.2623.108, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: multiple unspecified vulnerabilities",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
          "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-3679"
        },
        {
          "category": "external",
          "summary": "RHBZ#1322490",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1322490"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-3679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-3679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-3679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3679"
        },
        {
          "category": "external",
          "summary": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html",
          "url": "http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html"
        }
      ],
      "release_date": "2016-03-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-03-30T07:54:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:0525"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Client-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Server-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-0:49.0.2623.108-1.el6.x86_64",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.i686",
            "6Workstation-Supplementary-6.7.z:chromium-browser-debuginfo-0:49.0.2623.108-1.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: multiple unspecified vulnerabilities"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-1646 (GCVE-0-2016-1646)

CISA KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

Timestamps

Scope

Evidence

Vendor Report Successful Exploitation Confidence: 80% Source: cisa-kev

Details

References

RHSA-2016_0525

Tags

Sightings

Nomenclature