CVE-2015-6764 (retired)

Priority
Description
The BasicJsonStringifier::SerializeJSArray function in json-stringifier.h
in the JSON stringifier in Google V8, as used in Google Chrome before
47.0.2526.73, improperly loads array elements, which allows remote
attackers to cause a denial of service (out-of-bounds memory access) or
possibly have unspecified other impact via crafted JavaScript code.
Notes
 mikesalvatore> The Ubuntu Security Team does not support libv8
Package
Source: libv8 (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 16.04 LTS (Xenial Xerus):ignored (libv8 not supported)
Ubuntu 18.04 LTS (Bionic Beaver):ignored (libv8 not supported)
Ubuntu 19.04 (Disco Dingo):ignored (libv8 not supported)
Package
Upstream:released (4.2.3~dfsg-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.2.6~dfsg-1ubuntu4.1)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (8.10.0~dfsg-2)
Ubuntu 19.04 (Disco Dingo):not-affected (8.11.2~dfsg-1)
More Information

Updated: 2019-09-19 15:55:22 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)