CVE-2014-3195 (retired)

Priority
Description
Google V8, as used in Google Chrome before 38.0.2125.101, does not properly
track JavaScript heap-memory allocations as allocations of uninitialized
memory and does not properly concatenate arrays of double-precision
floating-point numbers, which allows remote attackers to obtain sensitive
information via crafted JavaScript code, related to the
PagedSpace::AllocateRaw and NewSpace::AllocateRaw functions in
heap/spaces-inl.h, the LargeObjectSpace::AllocateRaw function in
heap/spaces.cc, and the Runtime_ArrayConcat function in runtime.cc.
Notes
 mikesalvatore> The Ubuntu Security Team does not support libv8
Package
Upstream:released (38.0.2125.101)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was ignored)
Ubuntu 14.04 LTS (Trusty Tahr):released (38.0.2125.111-0ubuntu0.14.04.1.1061)
Ubuntu 16.04 LTS (Xenial Xerus):released (38.0.2125.111-0ubuntu1.1103)
Ubuntu 18.04 LTS (Bionic Beaver):released (38.0.2125.111-0ubuntu1.1103)
Ubuntu 18.10 (Cosmic Cuttlefish):released (38.0.2125.111-0ubuntu1.1103)
Ubuntu 19.04 (Disco Dingo):released (38.0.2125.111-0ubuntu1.1103)
Package
Source: libv8 (LP Ubuntu Debian)
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 18.10 (Cosmic Cuttlefish):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Package
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):ignored (libv8 not supported)
Ubuntu 16.04 LTS (Xenial Xerus):ignored (libv8 not supported)
Ubuntu 18.04 LTS (Bionic Beaver):ignored (libv8 not supported)
Ubuntu 18.10 (Cosmic Cuttlefish):ignored (libv8 not supported)
Ubuntu 19.04 (Disco Dingo):ignored (libv8 not supported)
Package
Upstream:released (1.2.5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (1.2.5-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.2.5-0ubuntu1)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 18.10 (Cosmic Cuttlefish):DNE
Ubuntu 19.04 (Disco Dingo):DNE
More Information

Updated: 2019-03-26 12:13:02 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)