CVE-2016-5142

by Fred · 07/08/2016

The Web Cryptography API (aka WebCrypto) implementation in Blink, as used in Google Chrome before 52.0.2743.116, does not properly copy data buffers, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted JavaScript code, related to NormalizeAlgorithm.cpp and SubtleCrypto.cpp.

Date published : 2016-08-07

http://www.securityfocus.com/bid/92276

http://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop.html

CVE-2016-5142

Similar

Recent Posts

Categories

CVE-2016-5142

Share this:

Similar

Recent Posts

Categories

Tags