CVE-2016-7549

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 53.0.2785.113 Opera (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service, resulting in an invalid pointer dereference and application crash, or possibly have other unspecified impacts. This is achieved by leveraging access to a renderer process. The problem is related to the handling of a certain IPC message, specifically when the recipient is not a valid RenderFrame or RenderWidget, as demonstrated by a Password Manager message. The affected components include render frame host impl.cc and render widget host impl.cc.

Recommendations For Google Chrome versions prior to 53.0.2785.113, update to version 53.0.2785.113 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.