Information on source package libv8

Available versions

ReleaseVersion
wheezy3.8.9.20-2

Open issues

BugwheezyDescription
CVE-2014-7967vulnerable (no DSA)Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, ...
CVE-2014-7192vulnerable (no DSA)Eval injection vulnerability in index.js in the syntax-error package ...
CVE-2014-3199vulnerable (no DSA)The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the ...
CVE-2014-3195vulnerable (no DSA)Google V8, as used in Google Chrome before 38.0.2125.101, does not ...
CVE-2014-3188vulnerable (no DSA)Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 ...
CVE-2014-3152vulnerable (no DSA)Integer underflow in the LCodeGen::PrepareKeyedOperand function in ...
CVE-2014-1736vulnerable (no DSA)Integer overflow in api.cc in Google V8, as used in Google Chrome ...
CVE-2014-1735vulnerable (no DSA)Multiple unspecified vulnerabilities in Google V8 before 3.24.35.33, ...
CVE-2014-1730vulnerable (no DSA)Google V8, as used in Google Chrome before 34.0.1847.131 on Windows ...
CVE-2014-1729vulnerable (no DSA)Multiple unspecified vulnerabilities in Google V8 before 3.24.35.22, ...
CVE-2014-1717vulnerable (no DSA)Google V8, as used in Google Chrome before 34.0.1847.116, does not ...
CVE-2014-1716vulnerable (no DSA)Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype ...
CVE-2014-1705vulnerable (no DSA)Google V8, as used in Google Chrome before 33.0.1750.152 on OS X and ...
CVE-2014-1704vulnerable (no DSA)Multiple unspecified vulnerabilities in Google V8 before 3.23.17.18, ...
CVE-2013-6668vulnerable (no DSA)Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, ...
CVE-2013-6650vulnerable (no DSA)The StoreBuffer::ExemptPopularPages function in store-buffer.cc in ...
CVE-2013-6649vulnerable (no DSA)Use-after-free vulnerability in the RenderSVGImage::paint function in ...
CVE-2013-6640vulnerable (no DSA)The DehoistArrayIndex function in hydrogen-dehoist.cc (aka ...
CVE-2013-6639vulnerable (no DSA)The DehoistArrayIndex function in hydrogen-dehoist.cc (aka ...
CVE-2013-6638vulnerable (no DSA)Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, ...
CVE-2013-2919vulnerable (no DSA)Google V8, as used in Google Chrome before 30.0.1599.66, allows remote ...
CVE-2013-2882vulnerable (no DSA)Google V8, as used in Google Chrome before 28.0.1500.95, allows remote ...
CVE-2013-2838vulnerable (no DSA)Google V8, as used in Google Chrome before 27.0.1453.93, allows remote ...
CVE-2013-2632vulnerable (no DSA)Google V8 before 3.17.13, as used in Google Chrome before 27.0.1444.3, ...

Open unimportant issues

BugwheezyDescription
CVE-2018-6065vulnerable
CVE-2018-6064vulnerable
CVE-2018-6061vulnerable
CVE-2018-6056vulnerable
CVE-2017-5122vulnerableInappropriate use of table size handling in V8 in Google Chrome prior ...
CVE-2017-5121vulnerableInappropriate use of JIT optimisation in V8 in Google Chrome prior to ...
CVE-2017-5116vulnerableType confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, ...
CVE-2017-5115vulnerableType confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows ...
CVE-2017-5071vulnerableInsufficient validation of untrusted input in V8 in Google Chrome prior ...
CVE-2017-5070vulnerableType confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, ...
CVE-2017-5054vulnerableAn out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for ...
CVE-2017-5053vulnerableAn out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for ...
CVE-2017-5040vulnerableV8 in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux ...
CVE-2017-5030vulnerableIncorrect handling of complex species in V8 in Google Chrome prior to ...
CVE-2017-5012vulnerableA heap buffer overflow in V8 in Google Chrome prior to 56.0.2924.76 for ...
CVE-2017-15429vulnerable
CVE-2017-15399vulnerable
CVE-2017-15396vulnerable
CVE-2016-9651vulnerable
CVE-2016-5219vulnerableA heap use after free in V8 in Google Chrome prior to 55.0.2883.75 for ...
CVE-2016-5213vulnerableA use after free in V8 in Google Chrome prior to 55.0.2883.75 for Mac, ...
CVE-2016-5200vulnerableV8 in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 ...
CVE-2016-5198vulnerableV8 in Google Chrome prior to 54.0.2840.90 for Linux, and 54.0.2840.85 ...
CVE-2016-5129vulnerableGoogle V8 before 5.2.361.32, as used in Google Chrome before ...
CVE-2016-3679vulnerableMultiple unspecified vulnerabilities in Google V8 before 4.9.385.33, ...
CVE-2016-2051vulnerableMultiple unspecified vulnerabilities in Google V8 before 4.8.271.17, ...
CVE-2016-1688vulnerableThe regexp (aka regular expression) implementation in Google V8 before ...
CVE-2016-1678vulnerableobjects.cc in Google V8 before 5.0.71.32, as used in Google Chrome ...
CVE-2016-1677vulnerableuri.js in Google V8 before 5.1.281.26, as used in Google Chrome before ...
CVE-2016-1669vulnerableThe Zone::New function in zone.cc in Google V8 before 5.0.71.47, as ...
CVE-2016-1665vulnerableThe JSGenericLowering class in compiler/js-generic-lowering.cc in ...
CVE-2016-1653vulnerableThe LoadBuffer implementation in Google V8, as used in Google Chrome ...
CVE-2016-1646vulnerableThe Array.prototype.concat implementation in builtins.cc in Google V8, ...
CVE-2015-8478vulnerableMultiple unspecified vulnerabilities in Google V8 before 4.7.80.23, as ...
CVE-2015-7834vulnerableMultiple unspecified vulnerabilities in Google V8 before 4.6.85.23, as ...
CVE-2015-5605vulnerableThe regular-expression implementation in Google V8, as used in Google ...
CVE-2015-3910vulnerableMultiple unspecified vulnerabilities in Google V8 before 4.3.61.21, as ...

Resolved issues

BugDescription
CVE-2013-0836Google V8 before 3.14.5.3, as used in Google Chrome before ...
CVE-2012-5153Google V8 before 3.14.5.3, as used in Google Chrome before ...
CVE-2012-5128Google V8 before 3.13.7.5, as used in Google Chrome before ...
CVE-2012-5120Google V8 before 3.13.7.5, as used in Google Chrome before ...
CVE-2011-5037Google V8 computes hash values for form parameters without restricting ...
CVE-2011-3900Google V8, as used in Google Chrome before 15.0.874.121, allows remote ...
CVE-2011-3886Google V8, as used in Google Chrome before 15.0.874.102, allows remote ...
CVE-2011-3115Google V8, as used in Google Chrome before 19.0.1084.52, allows remote ...
CVE-2011-3111Google V8, as used in Google Chrome before 19.0.1084.52, allows remote ...
CVE-2011-3103Google V8, as used in Google Chrome before 19.0.1084.52, does not ...
CVE-2011-3092The regex implementation in Google V8, as used in Google Chrome before ...
CVE-2011-3057Google V8, as used in Google Chrome before 17.0.963.83, allows remote ...
CVE-2011-2881Google Chrome before 14.0.835.202 does not properly handle Google V8 ...
CVE-2011-2875Google V8, as used in Google Chrome before 14.0.835.163, does not ...
CVE-2011-2856Google V8, as used in Google Chrome before 14.0.835.163, allows remote ...
CVE-2011-2852Off-by-one error in Google V8, as used in Google Chrome before ...
CVE-2011-2802Google V8, as used in Google Chrome before 13.0.782.107, does not ...
CVE-2011-2348Google V8, as used in Google Chrome before 12.0.742.112, performs an ...
CVE-2011-2332Google V8, as used in Google Chrome before 12.0.742.91, allows remote ...
CVE-2011-1286Google V8, as used in Google Chrome before 10.0.648.127, allows remote ...
CVE-2011-1285The regular-expression functionality in Google Chrome before ...
CVE-2011-1193Google V8, as used in Google Chrome before 10.0.648.127, allows remote ...
CVE-2011-1187Google Chrome before 10.0.648.127 allows remote attackers to bypass ...
CVE-2010-3730Google Chrome before 6.0.472.62 does not properly use information ...
CVE-2010-3412Race condition in the console implementation in Google Chrome before ...
CVE-2010-0646Multiple integer signedness errors in factory.cc in Google V8 before ...
CVE-2010-0645Multiple integer overflows in factory.cc in Google V8 before r3560, as ...
CVE-2009-3264The getSVGDocument method in Google Chrome before 3.0.195.21 omits an ...
CVE-2009-2935Google V8, as used in Google Chrome before 2.0.172.43, allows remote ...
CVE-2009-2555Heap-based buffer overflow in src/jsregexp.cc in Google V8 before ...
CVE-2009-0276Cross-domain vulnerability in the V8 JavaScript engine in Google ...

Search for package or bug name: Reporting problems