Upstream information
Description
The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index.SUSE information
Overall state of this security issue: Running
This issue is currently rated as having moderate severity.
National Vulnerability Database | |
---|---|
Base Score | 7.5 |
Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | Partial |
Integrity Impact | Partial |
Availability Impact | Partial |
- openSUSE-SU-2013:1927-1, published Mon, 23 Dec 2013 15:04:16 +0100 (CET)
- openSUSE-SU-2013:1933-1, published Mon, 23 Dec 2013 15:06:12 +0100 (CET)
- openSUSE-SU-2013:1960-1, published Wed, 25 Dec 2013 18:09:56 +0100 (CET)
- openSUSE-SU-2013:1962-1, published Wed, 25 Dec 2013 18:10:24 +0100 (CET)
- openSUSE-SU-2014:0065-1, published Wed, 15 Jan 2014 11:04:14 +0100 (CET)
- openSUSE-SU-2014:0092-1, published Mon, 20 Jan 2014 12:04:16 +0100 (CET)
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Linux Enterprise Module for Web Scripting 15 |
| Patchnames: SUSE Linux Enterprise Module for Web Scripting 15 GA nodejs8 |
SUSE Linux Enterprise Module for Web Scripting 15 SP1 |
| Patchnames: SUSE Linux Enterprise Module for Web Scripting 15 SP1 GA nodejs8 |
SUSE Linux Enterprise Server 11 SP4-LTSS |
| Patchnames: slessp4-firefox-201910-14246 |
SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS |
| Patchnames: slessp4-firefox-201910-14246 |
openSUSE 12.3 |
| Patchnames: openSUSE-2013-1000 openSUSE-2013-1025 |
openSUSE 13.1 |
| Patchnames: openSUSE-2013-1026 openSUSE-2014-37 |
openSUSE Leap 15.0 |
| Patchnames: openSUSE Leap 15.0 GA chromium |
openSUSE Tumbleweed |
| Patchnames: openSUSE Tumbleweed GA chromedriver openSUSE Tumbleweed GA libv8-5 |
List of packages in QA
Product(s) | Package(s) |
---|---|
SUSE Linux Enterprise Server 11 SP4-LTSS |
|
SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS |
|
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification.
Product(s) | Source package | State |
---|