Endpoint Vulnerability

Security Vulnerability CVE-2016-1702 for Google Chrome

Description

The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as used in Google Chrome before 51.0.2704.79, does not validate the interval count, which allows remote attackers to cause a denial of service (out-of-bounds read) via crafted serialized data.

Affected Products

Google Chrome

References

CVE-2016-1702,