DescriptionThe wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the V8 bindings in Blink, as used in Google Chrome before 38.0.2125.101, has an erroneous fallback outcome for wrapper-selection failures, which allows remote attackers to cause a denial of service via vectors that trigger stopping a worker process that had been handling an Event object.
Overall state of this security issue: Postponed
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- openSUSE-SU-2014:1378-1, published Mon, 10 Nov 2014 13:06:29 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE 13.1|| ||Patchnames:
|openSUSE Leap 15.0|| ||Patchnames:
openSUSE Leap 15.0 GA chromium
|openSUSE Tumbleweed|| ||Patchnames:
openSUSE Tumbleweed GA chromedriver