CVE-2016-1700

extensions/renderer/runtime_custom_bindings.cc in Google Chrome before 51.0.2704.79 does not consider side effects during creation of an array of extension views, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via vectors related to extensions.

Affected Software

Name	Vendor	Start Version	End Version
Debian_linux	Debian	8.0 (including)	8.0 (including)
Leap	Opensuse	42.1 (including)	42.1 (including)
Opensuse	Opensuse	13.2 (including)	13.2 (including)
Enterprise_linux_desktop	Redhat	6.0 (including)	6.0 (including)
Enterprise_linux_server	Redhat	6.0 (including)	6.0 (including)
Enterprise_linux_workstation	Redhat	6.0 (including)	6.0 (including)
Linux_enterprise	Suse	12.0 (including)	12.0 (including)
Red Hat Enterprise Linux 6 Supplementary	RedHat	chromium-browser-0:51.0.2704.79-1.el6	*
Chromium-browser	Ubuntu	devel	*
Chromium-browser	Ubuntu	precise	*
Chromium-browser	Ubuntu	trusty	*
Chromium-browser	Ubuntu	upstream	*
Chromium-browser	Ubuntu	wily	*
Chromium-browser	Ubuntu	xenial	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1700
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References