(RHSA-2013:1201) Low: ruby193-v8 security update

2013-09-03T04:00:00
ID RHSA-2013:1201
Type redhat
Reporter RedHat
Modified 2018-06-13T01:27:36

Description

V8 is Google's open source JavaScript engine.

A type confusion issue was found in the V8 JavaScript engine. An attacker could use this flaw to cause a denial of service or, potentially, execute arbitrary code. (CVE-2013-2882)

Note: Exploitation of this issue requires, at the least, execution of malicious JavaScript. In the standard use case of ruby193-v8 in Red Hat OpenStack it is unlikely that a scenario exists where this would occur.

Users of ruby193-v8 are advised to upgrade to these updated packages, which correct this issue.