129 matches found
Security Bulletin: Multiple vulnerabilities may affect IBM® SDK for Node.js™
Summary Node.js vulnerabilities in Node.js and the V8 Javascript engine were disclosed on October 18 2016, by the Node.js Foundation. IBM SDK for Node.js has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-5180 DESCRIPTION: The V8 Javascript engine, as used in Google Chrome O...
Google Chrome < 64.0.3282.167 Vulnerability
The version of Google Chrome installed on the remote macOS host is prior to 64.0.3282.167. It is, therefore, affected by a vulnerability as referenced in the 201802stable-channel-update-for-desktop13 advisory. - Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prior ...
Google Chrome < 64.0.3282.167 Vulnerability
The version of Google Chrome installed on the remote Windows host is prior to 64.0.3282.167. It is, therefore, affected by a vulnerability as referenced in the 201802stable-channel-update-for-desktop13 advisory. - Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prio...
Google Chrome < 64.0.3282.140 Vulnerability
The version of Google Chrome installed on the remote macOS host is prior to 64.0.3282.140. It is, therefore, affected by a vulnerability as referenced in the 201802stable-channel-update-for-desktop advisory. Note that Nessus has not tested for this issue but has instead relied only on the...
Important: Red Hat Security Advisory: chromium-browser security update
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
Google Chrome < 61.0.3163.100 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 61.0.3163.100. It is, therefore, affected by multiple vulnerabilities as referenced in the 201709stable-channel-update-for-desktop21 advisory. - Inappropriate use of table size handling in V8 in Google Chrome prior to...
Google Chrome 60.0.3080.5 V8 JavaScript Engine Out-Of-Bounds Write
// Source: https://halbecaf.com/2017/05/24/exploiting-a-v8-oob-write/ // // v8 exploit for https://crbug.com/716044 var oobrw = null; var leak = null; var arbrw = null; var code = function return 1; code; class BuggyArray extends Array constructorlen super1; oobrw = new Array1.1, 1.1; leak = new...
Google Chrome 60.0.3080.5 V8 JavaScript Engine - Out-of-Bounds Write
// Source: https://halbecaf.com/2017/05/24/exploiting-a-v8-oob-write/ // // v8 exploit for https://crbug.com/716044 var oobrw = null; var leak = null; var arbrw = null; var code = function return 1; code; class BuggyArray extends Array constructorlen super1; oobrw = new Array1.1, 1.1; leak = new...
Google Chrome < 45.0.2454.101 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 45.0.2454.101. It is, therefore, affected by multiple vulnerabilities as referenced in the 201509stable-channel-update24 advisory. - object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does no...
Security Updates for Node.js and io.js
Networking applications using Node.js or io.js contain a vulnerability in the V8 JavaScript engine. Exploitation of this vulnerability may allow a remote attacker to cause a denial-of-service condition. Available updates include: node.js-v0.12.6 io.js-v2.2.3 io.js-v1.8.3 Users and administrators...
[SECURITY] Fedora 20 Update: v8-3.14.5.10-18.fc20
V8 is Google's open source JavaScript engine. V8 is written in C++ and is u sed in Google Chrome, the open source browser from Google. V8 implements ECMASc ript as specified in ECMA-262, 3rd edition...
Google Chrome < 35.0.1916.114 Multiple Vulnerabilities (Mac OS X)
The version of Google Chrome installed on the remote Mac OS X host is a version prior to 35.0.1916.114. It is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to 'styles' and 'SVG' handling. CVE-2014-1743, CVE-2014-1745 - An integer overflow error exis...
Google Chrome < 34.0.1847.131 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 34.0.1847.131. It is, therefore, affected by the following vulnerabilities : - A buffer overflow error exists related to the included version of Flash Player. CVE-2014-0515 - Type confusion errors exist related to the...
Google Chrome < 34.0.1847.116 Multiple Vulnerabilities
Binary data 8208.pasl...
Google Chrome < 34.0.1847.116 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 34.0.1847.116. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists in the included Flash version that could lead to arbitrary code execution. CVE-2014-0506 - A buffer overflow...
Google Chrome < 33.0.1750.149 Multiple Vulnerabilities
Binary data 8158.pasl...
Fedora Update for v8 FEDORA-2014-3253
Check for the Version of v8 OpenVAS Vulnerability Test Fedora Update for v8 FEDORA-2014-3253 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the...
Google Chrome < 33.0.1750.149 Multiple Vulnerabilities (Mac OS X)
The version of Google Chrome installed on the remote Mac OS X host is a version prior to 33.0.1750.149. It is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to 'speech' and 'web database' processing. CVE-2014-1700, CVE-2014-1702 - An input validation...
Google Chrome < 33.0.1750.149 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 33.0.1750.149. It is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to 'speech' and 'web database' processing. CVE-2014-1700, CVE-2014-1702 - An input validation error...
Google Chrome < 33.0.1750.146 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 33.0.1750.146. It is, therefore, affected by the following vulnerabilities : - Use-after-free errors exist related to handling SVG images and speech recognition processing. CVE-2013-6663, CVE-2013-6664 - An error exis...