VYPR
High severity8.8NVD Advisory· Published May 14, 2016· Updated Jun 17, 2026

CVE-2016-1669

CVE-2016-1669

Description

The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13
  • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
    Range: <=50.0.2661.87
  • Google/V82 versions
    cpe:2.3:a:google:v8:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:google:v8:*:*:*:*:*:*:*:*range: <=5.0.71
    • (no CPE)range: <5.0.71.47
  • Node.js/Node.js3 versions
    cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*range: >=0.10.0,<0.10.46
    • cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*range: >=4.0.0,<=4.1.2
    • cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*range: >=4.2.0,<4.4.6
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*+ 2 more
    • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
  • Range: <50.0.2661.102

Patches

Vulnerability mechanics

References

22

News mentions

0

No linked articles in our index yet.