CVE-2013-6639
Published: 7 December 2013
The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
chromium-browser Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
| precise |
Released
(31.0.1650.63-0ubuntu0.12.04.1~20131204.1)
|
|
| quantal |
Released
(31.0.1650.63-0ubuntu0.12.10.1~20131204.1)
|
|
| raring |
Released
(31.0.1650.63-0ubuntu0.13.04.1~20131204.1)
|
|
| saucy |
Released
(31.0.1650.63-0ubuntu0.13.10.1~20131204.1)
|
|
| trusty |
Does not exist
(trusty was not-affected [31.0.1650.63-0ubuntu1~20131204.1])
|
|
| upstream |
Released
(31.0.1650.63)
|
|
| utopic |
Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)
|
|
| vivid |
Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)
|
|
| wily |
Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)
|
|
| xenial |
Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)
|
|
| yakkety |
Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)
|
|
| zesty |
Not vulnerable
(31.0.1650.63-0ubuntu1~20131204.1)
|
|
|
libv8 Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
| precise |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
libv8-3.14 Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was not-affected [3.14.5.8-5ubuntu1])
|
|
| upstream |
Needed
|
|
| utopic |
Not vulnerable
(3.14.5.8-5ubuntu1)
|
|
| vivid |
Not vulnerable
(3.14.5.8-5ubuntu1)
|
|
| wily |
Not vulnerable
(3.14.5.8-5ubuntu1)
|
|
| xenial |
Not vulnerable
(3.14.5.8-5ubuntu1)
|
|
| yakkety |
Not vulnerable
(3.14.5.8-5ubuntu1)
|
|
| zesty |
Not vulnerable
(3.14.5.8-5ubuntu1)
|
|
|
qtjsbackend-opensource-src Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|