Name | CVE-2009-2555 |
Description | Heap-based buffer overflow in src/jsregexp.cc in Google V8 before 1.1.10.14, as used in Google Chrome before 2.0.172.37, allows remote attackers to execute arbitrary code in the Chrome sandbox via a crafted JavaScript regular expression. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
chromium-browser | source | (unstable) | (not affected) | |||
libv8 | source | (unstable) | 1.3.11+dfsg-1 | |||
webkit | source | (unstable) | (not affected) |
- chromium-browser <not-affected> (Only 1.x and 2.x are affected)
- webkit <not-affected> (libv8 issue)