CVE-2015-1290

The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

History

07 Nov 2023, 02:24

Type Values Removed Values Added
References (CONFIRM) http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html - Vendor Advisory () http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html -
References (CONFIRM) http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1 - Release Notes, Third Party Advisory () http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.5.1 -
References (CONFIRM) https://bugs.chromium.org/p/chromium/issues/detail?id=505374 - Issue Tracking, Vendor Advisory () https://bugs.chromium.org/p/chromium/issues/detail?id=505374 -
References (SUSE) http://lists.opensuse.org/opensuse-updates/2015-12/msg00116.html - Issue Tracking, Third Party Advisory () http://lists.opensuse.org/opensuse-updates/2015-12/msg00116.html -
References (MISC) http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80 - Issue Tracking, Third Party Advisory () http://www.nsfocus.net/index.php?act=advisory&do=view&adv_id=80 -
References (CONFIRM) https://codereview.chromium.org/1233453004 - Issue Tracking, Patch, Vendor Advisory () https://codereview.chromium.org/1233453004 -

Information

Published : 2018-01-09 16:29

Updated : 2024-02-28 16:04


NVD link : CVE-2015-1290

Mitre link : CVE-2015-1290

CVE.ORG link : CVE-2015-1290


JSON object : View

Products Affected

google

  • chrome

qt

  • qt

opensuse

  • leap
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer