CVE-2017-5116
published 2017-10-27CVE-2017-5116: Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute…
PriorityP353high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
12.67%
95.8th percentile
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| chrome | < 61.0.3163.79 | 61.0.3163.79 | |
| chrome | < 61.0.3163.81 | 61.0.3163.81 | |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is triggered via a crafted HTML page delivered remotely, targeting the V8 JavaScript engine in Google Chrome; monitor for exploitation attempts through web content delivery ↗
- →Type confusion flaw in the V8 component of Chromium; focus detection on anomalous V8 engine behavior or sandbox escape activity in Chrome processes ↗
- ·Vulnerability affects Google Chrome prior to 61.0.3163.79 on Mac, Windows, and Linux, and prior to 61.0.3163.81 on Android; ensure version-based detection covers both desktop and Android branches ↗
- ·Upstream Chromium issue tracker reference for this CVE is bug 759624; may contain additional technical details if access is available ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hvc8-7rpc-2g6w: Type confusion in V8 in Google Chrome prior to 61
ghsa_unreviewed·2022-05-13
CVE-2017-5116 [HIGH] CWE-843 GHSA-hvc8-7rpc-2g6w: Type confusion in V8 in Google Chrome prior to 61
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
OSV
CVE-2017-5116: Type confusion in V8 in Google Chrome prior to 61
osv·2017-10-27·CVSS 8.8
CVE-2017-5116 [HIGH] CVE-2017-5116: Type confusion in V8 in Google Chrome prior to 61
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Red Hat
chromium-browser: type confusion in v8
vendor_redhat·2017-09-05·CVSS 8.8
CVE-2017-5116 [HIGH] chromium-browser: type confusion in v8
chromium-browser: type confusion in v8
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 chromium: various flaws [fedora-all]
bugzilla·2017-09-06·CVSS 8.8
CVE-2017-5111 [HIGH] CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 chromium: various flaws [fedora-all]
CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 chromium: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM
Bugzilla
CVE-2017-5116 chromium-browser: type confusion in v8
bugzilla·2017-09-06·CVSS 8.8
CVE-2017-5116 [HIGH] CVE-2017-5116 chromium-browser: type confusion in v8
CVE-2017-5116 chromium-browser: type confusion in v8
A type confusion flaw was found in the V8 component of the Chromium browser.
Upstream bug(s):
https://code.google.com/p/chromium/issues/detail?id=759624
External References:
https://chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.html
Discussion:
Created chromium tracking bugs for this issue:
Affects: fedora-all [bug 1488785]
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6 Supplementary
Via RHSA-2017:2676 https://access.redhat.com/errata/RHSA-2017:2676
arXiv
A Practical Guideline and Taxonomy to LLVM's Control Flow Integrity
arxiv_fulltext·2025-08-21
A Practical Guideline and Taxonomy to LLVM's Control Flow Integrity
A Practical Guideline and Taxonomy to LLVM's Control Flow Integrity
@IEEEauthorhalign
@IEEEauthorhalign
Sabine Houy
Ume University
[email protected]
Bruno Kreyssig
Ume University
[email protected]
Timoth\'ee Riom
Ume University
[email protected]
Alexandre Bartel
Ume University
[email protected]
Patrick McDaniel
University of Wisconsin-Madison
[email protected]
## Abstract
Memory corruption vulnerabilities remain one of the most severe threats to software security. They often allow attackers to achieve arbitrary code execution by redirecting a vulnerable program's control flow.
While Control Flow Integrity (CFI) has gained traction to mitigate this exploitation path, developers are not provided with any direction on how to apply CFI to real-world software.
http://www.debian.org/security/2017/dsa-3985http://www.securityfocus.com/bid/100610http://www.securitytracker.com/id/1039291https://access.redhat.com/errata/RHSA-2017:2676https://chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.htmlhttps://crbug.com/759624https://security.gentoo.org/glsa/201709-15https://security.googleblog.com/2018/01/android-security-ecosystem-investments.htmlhttp://www.debian.org/security/2017/dsa-3985http://www.securityfocus.com/bid/100610http://www.securitytracker.com/id/1039291https://access.redhat.com/errata/RHSA-2017:2676https://chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.htmlhttps://crbug.com/759624https://security.gentoo.org/glsa/201709-15https://security.googleblog.com/2018/01/android-security-ecosystem-investments.html
2017-10-27
Published