browser/extensions/api/dial/dial_registry.cc in Google Chrome before 54.0.2840.98 on macOS, before 54.0.2840.99 on Windows, and before 54.0.2840.100 on Linux neglects to copy a device ID before an erase() call, which causes the erase operation to access data that that erase operation will destroy.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2024-08-06T00:53:48.686Z

Reserved: 2016-05-31T00:00:00

Link: CVE-2016-5202

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-10-25T15:15:11.857

Modified: 2024-11-21T02:53:49.897

Link: CVE-2016-5202

cve-icon Redhat

Severity : Important

Publid Date: 2016-11-09T00:00:00Z

Links: CVE-2016-5202 - Bugzilla

cve-icon OpenCVE Enrichment

No data.