Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 100 results


CVE-2020-6537

Medium priority

Some fixes available 2 of 4

Type confusion in V8 in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

2 affected packages

chromium-browser, libv8-3.14

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected Not affected Not affected Fixed Fixed
libv8-3.14 Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2020-6533

Medium priority

Some fixes available 2 of 4

Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

2 affected packages

chromium-browser, libv8-3.14

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected Not affected Not affected Fixed Fixed
libv8-3.14 Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2020-6512

Medium priority

Some fixes available 2 of 4

Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

2 affected packages

chromium-browser, libv8-3.14

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected Not affected Not affected Fixed Fixed
libv8-3.14 Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2020-6507

Medium priority

Some fixes available 2 of 4

Out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

2 affected packages

chromium-browser, libv8-3.14

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected Not affected Not affected Fixed Fixed
libv8-3.14 Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2018-6149

Medium priority

Some fixes available 4 of 10

Type confusion in JavaScript in Google Chrome prior to 67.0.3396.87 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.

3 affected packages

chromium-browser, libv8-3.14, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed Fixed
libv8-3.14 Ignored Ignored
oxide-qt Not in release Ignored
Show less packages

CVE-2018-6142

Medium priority

Some fixes available 4 of 10

Array bounds check failure in V8 in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file.

3 affected packages

chromium-browser, libv8-3.14, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed Fixed
libv8-3.14 Ignored Ignored
oxide-qt Not in release Ignored
Show less packages

CVE-2018-6136

Medium priority

Some fixes available 4 of 10

Missing type check in V8 in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

3 affected packages

chromium-browser, libv8-3.14, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed Fixed
libv8-3.14 Ignored Ignored
oxide-qt Not in release Ignored
Show less packages

CVE-2018-6143

Medium priority

Some fixes available 4 of 10

Insufficient validation in V8 in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

3 affected packages

chromium-browser, libv8-3.14, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed Fixed
libv8-3.14 Ignored Ignored
oxide-qt Not in release Ignored
Show less packages

CVE-2018-6056

Medium priority

Some fixes available 5 of 11

Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prior to 64.0.3282.168 allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

3 affected packages

chromium-browser, libv8-3.14, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Fixed Fixed
libv8-3.14 Ignored Ignored
oxide-qt Not in release Ignored
Show less packages

CVE-2018-6065

Medium priority

Some fixes available 3 of 9

Integer overflow in computing the required allocation size when instantiating a new javascript object in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

3 affected packages

chromium-browser, libv8-3.14, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
chromium-browser Not affected Fixed
libv8-3.14 Ignored Ignored
oxide-qt Not in release Ignored
Show less packages