CVE-2014-3199
08.10.2014, 10:55
The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the V8 bindings in Blink, as used in Google Chrome before 38.0.2125.101, has an erroneous fallback outcome for wrapper-selection failures, which allows remote attackers to cause a denial of service via vectors that trigger stopping a worker process that had been handling an Event object.Enginsight
| Vendor | Product | Version |
|---|---|---|
| redhat | enterprise_linux_desktop_supplementary | 6.0 |
| redhat | enterprise_linux_server_supplementary | 6.0 |
| redhat | enterprise_linux_server_supplementary_eus | 6.6.z:z |
| redhat | enterprise_linux_workstation_supplementary | 6.0 |
| chrome | 𝑥 ≤ 38.0.2125.7 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| chromium-browser |
| ||||||||||||||||||||||||
| libv8 |
| ||||||||||||||||||||||||
| libv8-3.14 |
| ||||||||||||||||||||||||
| oxide-qt |
|
Common Weakness Enumeration
References