CVE-2014-3152

EUVD-2014-3170
Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a negative key value.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
googlev8
𝑥
≤ 3.25.28
googlev8
3.25.0
googlev8
3.25.1
googlev8
3.25.2
googlev8
3.25.3
googlev8
3.25.4
googlev8
3.25.5
googlev8
3.25.6
googlev8
3.25.7
googlev8
3.25.8
googlev8
3.25.9
googlev8
3.25.10
googlev8
3.25.11
googlev8
3.25.12
googlev8
3.25.13
googlev8
3.25.14
googlev8
3.25.15
googlev8
3.25.16
googlev8
3.25.17
googlev8
3.25.18
googlev8
3.25.19
googlev8
3.25.20
googlev8
3.25.21
googlev8
3.25.22
googlev8
3.25.23
googlev8
3.25.24
googlev8
3.25.25
googlev8
3.25.26
googlev8
3.25.27
googlechrome
𝑥
≤ 35.0.1916.113
googlechrome
35.0.1916.0
googlechrome
35.0.1916.1
googlechrome
35.0.1916.2
googlechrome
35.0.1916.3
googlechrome
35.0.1916.4
googlechrome
35.0.1916.5
googlechrome
35.0.1916.6
googlechrome
35.0.1916.7
googlechrome
35.0.1916.8
googlechrome
35.0.1916.9
googlechrome
35.0.1916.10
googlechrome
35.0.1916.11
googlechrome
35.0.1916.13
googlechrome
35.0.1916.14
googlechrome
35.0.1916.15
googlechrome
35.0.1916.17
googlechrome
35.0.1916.18
googlechrome
35.0.1916.19
googlechrome
35.0.1916.20
googlechrome
35.0.1916.21
googlechrome
35.0.1916.22
googlechrome
35.0.1916.23
googlechrome
35.0.1916.27
googlechrome
35.0.1916.31
googlechrome
35.0.1916.32
googlechrome
35.0.1916.33
googlechrome
35.0.1916.34
googlechrome
35.0.1916.35
googlechrome
35.0.1916.36
googlechrome
35.0.1916.37
googlechrome
35.0.1916.38
googlechrome
35.0.1916.39
googlechrome
35.0.1916.40
googlechrome
35.0.1916.41
googlechrome
35.0.1916.42
googlechrome
35.0.1916.43
googlechrome
35.0.1916.44
googlechrome
35.0.1916.45
googlechrome
35.0.1916.46
googlechrome
35.0.1916.47
googlechrome
35.0.1916.48
googlechrome
35.0.1916.49
googlechrome
35.0.1916.51
googlechrome
35.0.1916.52
googlechrome
35.0.1916.54
googlechrome
35.0.1916.56
googlechrome
35.0.1916.57
googlechrome
35.0.1916.59
googlechrome
35.0.1916.61
googlechrome
35.0.1916.68
googlechrome
35.0.1916.69
googlechrome
35.0.1916.71
googlechrome
35.0.1916.72
googlechrome
35.0.1916.74
googlechrome
35.0.1916.77
googlechrome
35.0.1916.80
googlechrome
35.0.1916.82
googlechrome
35.0.1916.84
googlechrome
35.0.1916.85
googlechrome
35.0.1916.86
googlechrome
35.0.1916.88
googlechrome
35.0.1916.90
googlechrome
35.0.1916.92
googlechrome
35.0.1916.93
googlechrome
35.0.1916.95
googlechrome
35.0.1916.96
googlechrome
35.0.1916.98
googlechrome
35.0.1916.99
googlechrome
35.0.1916.101
googlechrome
35.0.1916.103
googlechrome
35.0.1916.104
googlechrome
35.0.1916.105
googlechrome
35.0.1916.106
googlechrome
35.0.1916.107
googlechrome
35.0.1916.108
googlechrome
35.0.1916.109
googlechrome
35.0.1916.110
googlechrome
35.0.1916.111
googlechrome
35.0.1916.112
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
artful
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
bionic
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
cosmic
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
lucid
ignored
precise
Fixed 36.0.1985.125-0ubuntu1.12.04.0~pkg897
released
saucy
ignored
trusty
Fixed 36.0.1985.125-0ubuntu1.14.04.0~pkg1029
released
utopic
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
vivid
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
wily
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
xenial
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
yakkety
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
zesty
Fixed 35.0.1916.153-0ubuntu1~pkg1029
released
libv8
artful
dne
bionic
dne
cosmic
dne
lucid
ignored
precise
ignored
saucy
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
libv8-3.14
artful
ignored
bionic
ignored
cosmic
ignored
lucid
dne
precise
dne
saucy
ignored
trusty
dne
utopic
ignored
vivid
ignored
wily
ignored
xenial
ignored
yakkety
ignored
zesty
ignored
oxide-qt
artful
Fixed 1.1.0~bzr640-0ubuntu1
released
bionic
dne
cosmic
dne
lucid
dne
precise
dne
saucy
dne
trusty
Fixed 1.0.4-0ubuntu0.14.04.1
released
utopic
Fixed 1.1.0~bzr640-0ubuntu1
released
vivid
Fixed 1.1.0~bzr640-0ubuntu1
released
wily
Fixed 1.1.0~bzr640-0ubuntu1
released
xenial
Fixed 1.1.0~bzr640-0ubuntu1
released
yakkety
Fixed 1.1.0~bzr640-0ubuntu1
released
zesty
Fixed 1.1.0~bzr640-0ubuntu1
released
qtjsbackend-opensource-src
artful
dne
bionic
dne
cosmic
dne
lucid
dne
precise
dne
saucy
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
Common Weakness Enumeration
References
http://googlechromereleases.blogspot.com/2014/05/stable-channel-update_20.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157338.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157357.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157363.html
http://lists.opensuse.org/opensuse-updates/2014-06/msg00023.html
http://secunia.com/advisories/58920
http://secunia.com/advisories/59155
http://secunia.com/advisories/60372
http://www.debian.org/security/2014/dsa-2939
http://www.securitytracker.com/id/1030270
https://code.google.com/p/chromium/issues/detail?id=358057
https://code.google.com/p/v8/source/detail?r=20363
http://googlechromereleases.blogspot.com/2014/05/stable-channel-update_20.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157338.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157357.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157363.html
http://lists.opensuse.org/opensuse-updates/2014-06/msg00023.html
http://secunia.com/advisories/58920
http://secunia.com/advisories/59155
http://secunia.com/advisories/60372
http://www.debian.org/security/2014/dsa-2939
http://www.securitytracker.com/id/1030270
https://code.google.com/p/chromium/issues/detail?id=358057
https://code.google.com/p/v8/source/detail?r=20363