Search CVE reports
61 – 70 of 100 results
CVE-2014-7931
Medium prioritySome fixes available 18 of 31
factory.cc in Google V8, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted JavaScript code that triggers...
4 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-7928
Medium prioritySome fixes available 18 of 29
hydrogen.cc in Google V8, as used Google Chrome before 40.0.2214.91, does not properly handle arrays with holes, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other...
3 affected packages
chromium-browser, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-7192
Medium priorityEval injection vulnerability in index.js in the syntax-error package before 1.1.1 for Node.js 0.10.x, as used in IBM Rational Application Developer and other products, allows remote attackers to execute arbitrary code via a crafted file.
1 affected package
libv8-3.14
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libv8-3.14 | Not in release | Not in release | Not in release | Vulnerable | Vulnerable |
CVE-2014-7967
Medium prioritySome fixes available 18 of 31
Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, as used in Google Chrome before 38.0.2125.101, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
4 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-3200
Medium prioritySome fixes available 18 of 31
Multiple unspecified vulnerabilities in Google Chrome before 38.0.2125.101 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
4 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-3199
Medium prioritySome fixes available 18 of 31
The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the V8 bindings in Blink, as used in Google Chrome before 38.0.2125.101, has an erroneous fallback outcome for wrapper-selection failures, which allows remote...
4 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-3195
Medium prioritySome fixes available 18 of 31
Google V8, as used in Google Chrome before 38.0.2125.101, does not properly track JavaScript heap-memory allocations as allocations of uninitialized memory and does not properly concatenate arrays of...
4 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-3188
Medium prioritySome fixes available 18 of 31
Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do not properly handle the interaction of IPC and Google V8, which allows remote attackers to execute arbitrary code via vectors involving JSON data, related to...
4 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
CVE-2014-5256
Medium priorityNode.js 0.8 before 0.8.28 and 0.10 before 0.10.30 does not consider the possibility of recursive processing that triggers V8 garbage collection in conjunction with a V8 interrupt, which allows remote attackers to cause a denial of...
2 affected packages
libv8, libv8-3.14
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
CVE-2014-3152
Medium prioritySome fixes available 19 of 35
Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or...
5 affected packages
chromium-browser, libv8, libv8-3.14, oxide-qt, qtjsbackend-opensource-src
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| chromium-browser | — | — | — | Fixed | Fixed |
| libv8 | — | — | — | Not in release | Not in release |
| libv8-3.14 | — | — | — | Ignored | Ignored |
| oxide-qt | — | — | — | Not in release | Fixed |
| qtjsbackend-opensource-src | — | — | — | Not in release | Not in release |