CVE-2016-1646

2016-03-29T10:59:00
ID CVE-2016-1646
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:27:00

Description

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.