ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| artful | released | 50.0.2661.102-0ubuntu1.1242 |
| bionic | released | 50.0.2661.102-0ubuntu1.1242 |
| cosmic | released | 50.0.2661.102-0ubuntu1.1242 |
| devel | released | 50.0.2661.102-0ubuntu1.1242 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [50.0.2661.102-0ubuntu0.14.04.1.1117]] |
| precise | ignored | |
| precise/esm | DNE | precise was ignored |
| trusty | released | 50.0.2661.102-0ubuntu0.14.04.1.1117 |
| trusty/esm | DNE | trusty was released [50.0.2661.102-0ubuntu0.14.04.1.1117] |
| upstream | released | 50.0.2661.102 |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support |
| cosmic | ignored | end of life |
| devel | ignored | libv8 not supported |
| esm-apps/bionic | ignored | libv8 not supported |
| esm-apps/xenial | ignored | libv8 not supported |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [libv8 not supported]] |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| artful | released | 1.14.9-0ubuntu1 |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.14.9-0ubuntu0.14.04.1]] |
| esm-infra/xenial | not-affected | 1.14.9-0ubuntu0.16.04.1 |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 1.14.9-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.14.9-0ubuntu0.14.04.1] |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
EPSS
9.3 Critical
CVSS2
8.8 High
CVSS3
Π‘Π²ΡΠ·Π°Π½Π½ΡΠ΅ ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΠΈ
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as us ...
The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome before 50.0.2661.102, does not properly determine when to expand certain memory allocations, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via crafted JavaScript code.
EPSS
9.3 Critical
CVSS2
8.8 High
CVSS3