CVE-2016-2844

HIGH

Google Chrome < 48.0.2564.116 - Denial of Service via Incorrect Anonymous Block Wrapper Handling

Title source: llm
STIX 2.1

Description

WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google Chrome before 49.0.2623.75, does not properly determine when anonymous block wrappers may exist, which allows remote attackers to cause a denial of service (incorrect cast and assertion failure) or possibly have unspecified other impact via crafted JavaScript code.

References (7)

Core 7
Core References
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1035185
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/84170
Patch x_refsource_confirm
https://codereview.chromium.org/1423573002
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2920-1

Scores

CVSS v3 8.8
EPSS 0.0212
EPSS Percentile 79.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (1)
google/chrome < 48.0.2564.116
Published Mar 06, 2016
Tracked Since Feb 18, 2026