CVE-2016-5153 - OpenCVE

The Web Animations implementation in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, improperly relies on list iteration, which allows remote attackers to cause a denial of service (use-after-destruction) or possibly have unspecified other impact via a crafted web site.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Google	Chrome
Opensuse	Leap

Configuration 1 [-]

cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html
http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html
http://rhn.redhat.com/errata/RHSA-2016-1854.html
http://www.debian.org/security/2016/dsa-3660
http://www.securityfocus.com/bid/92717
http://www.securitytracker.com/id/1036729
https://codereview.chromium.org/2188623006
https://codereview.chromium.org/2189813002/
https://crbug.com/631052
https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html
https://security.gentoo.org/glsa/201610-09

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: Chrome

Published: 2016-09-11T10:00:00

Updated: 2017-08-12T09:57:01

Reserved: 2016-05-31T00:00:00

Link: CVE-2016-5153

JSON object: View

NVD Information

Status : Modified

Published: 2016-09-11T10:59:08.943

Modified: 2023-11-07T02:33:05.757

Link: CVE-2016-5153

JSON object: View

Redhat Information

No data.

CWE

CWE-19

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-08-31T00:00:00", "descriptions": [{"lang": "en", "value": "The Web Animations implementation in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, improperly relies on list iteration, which allows remote attackers to cause a denial of service (use-after-destruction) or possibly have unspecified other impact via a crafted web site."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-12T09:57:01", "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome"}, "references": [{"name": "openSUSE-SU-2016:2250", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://codereview.chromium.org/2188623006"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html"}, {"name": "SUSE-SU-2016:2251", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html"}, {"name": "92717", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/92717"}, {"name": "1036729", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1036729"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://codereview.chromium.org/2189813002/"}, {"name": "openSUSE-SU-2016:2349", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html"}, {"name": "DSA-3660", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2016/dsa-3660"}, {"name": "GLSA-201610-09", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201610-09"}, {"name": "openSUSE-SU-2016:2296", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html"}, {"name": "RHSA-2016:1854", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1854.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://crbug.com/631052"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@google.com", "ID": "CVE-2016-5153", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Web Animations implementation in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, improperly relies on list iteration, which allows remote attackers to cause a denial of service (use-after-destruction) or possibly have unspecified other impact via a crafted web site."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "openSUSE-SU-2016:2250", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html"}, {"name": "https://codereview.chromium.org/2188623006", "refsource": "CONFIRM", "url": "https://codereview.chromium.org/2188623006"}, {"name": "https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html", "refsource": "CONFIRM", "url": "https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html"}, {"name": "SUSE-SU-2016:2251", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html"}, {"name": "92717", "refsource": "BID", "url": "http://www.securityfocus.com/bid/92717"}, {"name": "1036729", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1036729"}, {"name": "https://codereview.chromium.org/2189813002/", "refsource": "CONFIRM", "url": "https://codereview.chromium.org/2189813002/"}, {"name": "openSUSE-SU-2016:2349", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html"}, {"name": "DSA-3660", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2016/dsa-3660"}, {"name": "GLSA-201610-09", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201610-09"}, {"name": "openSUSE-SU-2016:2296", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html"}, {"name": "RHSA-2016:1854", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2016-1854.html"}, {"name": "https://crbug.com/631052", "refsource": "CONFIRM", "url": "https://crbug.com/631052"}]}}}}, "cveMetadata": {"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "assignerShortName": "Chrome", "cveId": "CVE-2016-5153", "datePublished": "2016-09-11T10:00:00", "dateReserved": "2016-05-31T00:00:00", "dateUpdated": "2017-08-12T09:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*", "matchCriteriaId": "4863BE36-D16A-4D75-90D9-FD76DB5B48B7", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "matchCriteriaId": "2B9B1F3E-5ED5-490F-9AB5-B2065C2C99FF", "versionEndIncluding": "52.0.2743.116", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Web Animations implementation in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, improperly relies on list iteration, which allows remote attackers to cause a denial of service (use-after-destruction) or possibly have unspecified other impact via a crafted web site."}, {"lang": "es", "value": "La implementaci\u00f3n de Web Animations en Blink, tal como se utiliza en Google Chrome en versiones anteriores a 53.0.2785.89 en Windows y SO X y en versiones anteriores a 53.0.2785.92 en Linux, conf\u00eda indebidamente en la iteraci\u00f3n de lista, lo que permite a atacantes remotos provocar una denegaci\u00f3n de servicio (uso despu\u00e9s de destrucci\u00f3n de memoria) o posiblemente tener otro impacto no especificado a trav\u00e9s de un sitio web manipulado."}], "id": "CVE-2016-5153", "lastModified": "2023-11-07T02:33:05.757", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-09-11T10:59:08.943", "references": [{"source": "chrome-cve-admin@google.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-1854.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://www.debian.org/security/2016/dsa-3660"}, {"source": "chrome-cve-admin@google.com", "url": "http://www.securityfocus.com/bid/92717"}, {"source": "chrome-cve-admin@google.com", "url": "http://www.securitytracker.com/id/1036729"}, {"source": "chrome-cve-admin@google.com", "url": "https://codereview.chromium.org/2188623006"}, {"source": "chrome-cve-admin@google.com", "url": "https://codereview.chromium.org/2189813002/"}, {"source": "chrome-cve-admin@google.com", "url": "https://crbug.com/631052"}, {"source": "chrome-cve-admin@google.com", "url": "https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html"}, {"source": "chrome-cve-admin@google.com", "url": "https://security.gentoo.org/glsa/201610-09"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-19"}], "source": "nvd@nist.gov", "type": "Primary"}]}