CVE

Id
89663  
CVE No.
CVE-2016-2844  
Status
Candidate  
Description
WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google Chrome before 49.0.2623.75, does not properly determine when anonymous block wrappers may exist, which allows remote attackers to cause a denial of service (incorrect cast and assertion failure) or possibly have unspecified other impact via crafted JavaScript code.  
Phase
Assigned (20160305)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
776931 89663 CVE-2016-2844 CONFIRM:http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html  View
776932 89663 CVE-2016-2844 CONFIRM:https://bugs.chromium.org/p/chromium/issues/detail?id=546849  View
776933 89663 CVE-2016-2844 CONFIRM:https://code.google.com/p/chromium/issues/detail?id=591402  View
776934 89663 CVE-2016-2844 CONFIRM:https://codereview.chromium.org/1423573002  View
776935 89663 CVE-2016-2844 UBUNTU:USN-2920-1  View
776936 89663 CVE-2016-2844 URL:http://www.ubuntu.com/usn/USN-2920-1  View
776937 89663 CVE-2016-2844 BID:84170  View
776938 89663 CVE-2016-2844 URL:http://www.securityfocus.com/bid/84170  View
776939 89663 CVE-2016-2844 SECTRACK:1035185  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
1550 JVNDB-2016-002323 Linux Kernel の arch/x86/kernel/process_64.c の __switch_to 関数における権限を取得される脆弱性 Linux Kernel の arch/x86/kernel/process_64.c の __switch_to 関数は、64-bit PV Xen ゲスト上で IOPL のコンテキストの切り替え (context-switch)を適切に行わないため、権限を取得される、サービス運用妨害 (ゲスト OS クラッシュ) 状態にされる、または重要な情報を取得される脆弱性が存在します。 CVE-2016-3157 89663 7.2 7.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002323.html  View