Vulnerabilities

CVE-2016-1702

by Fred · 05/06/2016

The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as used in Google Chrome before 51.0.2704.79, does not validate the interval count, which allows remote attackers to cause a denial of service (out-of-bounds read) via crafted serialized data.

Date published : 2016-06-05

http://googlechromereleases.blogspot.com/2016/06/stable-channel-update.html

https://codereview.chromium.org/1961463003

Similar

Tags: Cybersecurity Alert