Name | CVE-2010-0646 |
Description | Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
chromium-browser | source | (unstable) | 5.0.375.29~r46008-1 | |||
libv8 | source | (unstable) | 2.1.6-1 | |||
webkit | source | (unstable) | (not affected) |
- webkit <not-affected> (libv8 issue)