CVE-2016-1646

Known Exploited (CISA KEV)HIGH

8.8

CVSS Severity Score

EPSS Score40.3590%

EPSS Percentile95.05th

PublishedMar 29, 2016

Last ModifiedApr 21, 2026

Vulnerability Description

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.

Affected Platforms (CPE)

💻

Debian

Debian Linux

= 8.0

💻

Debian

Debian Linux

= 9.0

💻

Canonical

Ubuntu Linux

= 14.04

💻

Canonical

Ubuntu Linux

= 15.10

💻

Canonical

Ubuntu Linux

= 16.04

📦

Google

Chrome

< 49.0.2623.108

📦

Suse

Package Hub

All versions

💻

Opensuse

Leap

= 42.1

💻

Opensuse

= 13.1

💻

Redhat

Enterprise Linux Desktop

= 6.0

💻

Redhat

Enterprise Linux Eus

= 6.7

💻

Redhat

Enterprise Linux Server

= 6.0

💻

Redhat

Enterprise Linux Workstation

= 6.0

References & Advisories

🔗 http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00000.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00001.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00039.html

🔗 http://rhn.redhat.com/errata/RHSA-2016-0525.html

🔗 http://www.debian.org/security/2016/dsa-3531

🔗 http://www.securitytracker.com/id/1035423

🔗 http://www.ubuntu.com/usn/USN-2955-1

Vulnerability Description

Affected Platforms (CPE)

Debian Linux

Debian Linux

Ubuntu Linux

Ubuntu Linux

Ubuntu Linux

Chrome

Package Hub

Leap

Opensuse

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux Server

Enterprise Linux Workstation

References & Advisories

Related Vulnerabilities