UBUNTU-CVE-2015-8478

Multiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as used in Google Chrome before 47.0.2526.73, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

Google Chrome (Andriod) Javascript Handling Arbitrary Code Execution Vulnerability

Google Chrome is a popular WEB browser. A security vulnerability in Google Chrome JavaScript v8 on Android allows remote attackers to exploit the vulnerability to build a malicious WEB page to trick users into parsing it, which can be used in the context of an application to execute arbitrary cod...

Google Chrome V8 Denial of Service Vulnerability (CNVD-2015-06766)

Google Chrome is an open source WEB browser. Google V8 has a security vulnerability that allows remote attackers to exploit the vulnerability to build malicious WEB pages, trick users into parsing them, crash applications, and more...

Google Chrome < 45.0.2454.101 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 45.0.2454.101. It is, therefore, affected by multiple vulnerabilities as referenced in the 201509stable-channel-update24 advisory. - object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does no...

chromium-browser: Cross-origin bypass in V8

object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does not properly restrict method calls on access-checked objects, which allows remote attackers to bypass the Same Origin Policy via a 1 observe or 2 getNotifier call...

UBUNTU-CVE-2015-1304

object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does not properly restrict method calls on access-checked objects, which allows remote attackers to bypass the Same Origin Policy via a 1 observe or 2 getNotifier call...

Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A remote code execution vulnerability exists in the VBScript and JScript engines in Microsoft IE version 8. An attacker exploiting...

chromium-browser: v8 denial of service

The regular-expression implementation in Google V8, as used in Google Chrome before 44.0.2403.89, mishandles interrupts, which allows remote attackers to cause a denial of service application crash via crafted JavaScript code, as demonstrated by an error in garbage collection during allocation of...

UBUNTU-CVE-2015-5605

The regular-expression implementation in Google V8, as used in Google Chrome before 44.0.2403.89, mishandles interrupts, which allows remote attackers to cause a denial of service application crash via crafted JavaScript code, as demonstrated by an error in garbage collection during allocation of...

Critical DoS Bug in Node.js, io.js Patched

Developers at Node.js over the weekend released a critical update to the open source runtime environment that addresses a bug that could be used to cause denial of service attacks. The JavaScript framework is used in one way or another by a handful of companies, including Netflix, PayPal, the New...

Security Updates for Node.js and io.js

Networking applications using Node.js or io.js contain a vulnerability in the V8 JavaScript engine. Exploitation of this vulnerability may allow a remote attacker to cause a denial-of-service condition. Available updates include: node.js-v0.12.6 io.js-v2.2.3 io.js-v1.8.3 Users and administrators...

UBUNTU-CVE-2015-3910

Multiple unspecified vulnerabilities in Google V8 before 4.3.61.21, as used in Google Chrome before 43.0.2357.65, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

[SECURITY] Fedora 20 Update: v8-3.14.5.10-18.fc20

V8 is Google's open source JavaScript engine. V8 is written in C++ and is u sed in Google Chrome, the open source browser from Google. V8 implements ECMASc ript as specified in ECMA-262, 3rd edition...

UBUNTU-CVE-2015-3333

Multiple unspecified vulnerabilities in Google V8 before 4.2.77.14, as used in Google Chrome before 42.0.2311.90, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

chromium-browser: Type confusion in V8

The ReduceTransitionElementsKind function in hydrogen-check-elimination.cc in Google V8 before 4.2.77.8, as used in Google Chrome before 42.0.2311.90, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that leverages "type...

Unspecified Arbitrary Code Execution Vulnerability in Google Chrome IPC Interaction

Google Chrome is a WEB-based browser. Google Chrome fails to properly handle IPC, Gamepad API, and Google V8 interaction vulnerabilities, allowing remote attackers to construct malicious WEB pages that can be tricked into parsing and executing arbitrary code...

UBUNTU-CVE-2015-1233

Google Chrome before 41.0.2272.118 does not properly handle the interaction of IPC, the Gamepad API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors...

[SECURITY] Fedora 20 Update: v8-3.14.5.10-17.fc20

V8 is Google's open source JavaScript engine. V8 is written in C++ and is u sed in Google Chrome, the open source browser from Google. V8 implements ECMASc ript as specified in ECMA-262, 3rd edition...

Google Chrome < 40.0.2214.111 Multiple Vulnerabilities

Binary data 8582.pasl...

chromium-browser: memory corruption in V8

The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-lowering.cc in Google V8, as used in Google Chrome before 40.0.2214.91, does not properly choose an integer data type, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified oth...